File Upload exec in DWSurvey-OSS v3.2.0 via saveimage/savveFile
CVE-2023-40980 Published on September 1, 2023

File Upload vulnerability in DWSurvey DWSurvey-OSS v.3.2.0 and before allows a remote attacker to execute arbitrary code via the saveimage method and savveFile in the action/UploadAction.java file.

NVD

Products Associated with CVE-2023-40980

Want to know whenever a new CVE is published for Diaowen Dwsurvey? stack.watch will email you.

Diaowen Dwsurvey

Exploit Probability

EPSS

1.71%

Percentile

82.68%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

File Upload exec in DWSurvey-OSS v3.2.0 via saveimage/savveFileCVE-2023-40980 Published on September 1, 2023

Products Associated with CVE-2023-40980

Exploit Probability

File Upload exec in DWSurvey-OSS v3.2.0 via saveimage/savveFile
CVE-2023-40980 Published on September 1, 2023