DreamD2v

1 exploit Active since Jun 2023
CVE-2023-31541 NOMISEC CRITICAL WRITEUP
CKEditor v1.2.3 - Unrestricted File Upload via Browse and Upload Images Feature
A unrestricted file upload vulnerability was discovered in the ‘Browse and upload images’ feature of the CKEditor v1.2.3 plugin for Redmine, which allows arbitrary files to be uploaded to the server.
2 stars
CVSS 9.8