CVE-2023-53869

EUVD-2025-203436
WEBIGniter 28.7.23 contains a file upload vulnerability that allows authenticated attackers to upload and execute dangerous PHP files through the media function. Attackers can leverage any created account to upload malicious PHP scripts that enable remote code execution on the application server.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
UNKNOWN
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 53%
Common Weakness Enumeration
References
https://webigniter.net/
https://www.exploit-db.com/exploits/51736
https://www.vulncheck.com/advisories/webigniter-unrestricted-file-upload-remote-code-execution