CVE-2023-25260
HIGHStimulsoft Designer (Web) 2023.1.3 - Local File Inclusion
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2023-25260. PoCs published by trustcves.
AI-analyzed exploit summary This repository contains a detailed technical writeup for CVE-2023-25260, a Local File Inclusion (LFI) vulnerability in Stimulsoft Designer (Web) versions 2023.1.3 and 2023.1.4. The writeup includes a proof of concept demonstrating how arbitrary local files can be read by manipulating the datasource file path input.
Description
Stimulsoft Designer (Web) 2023.1.3 is vulnerable to Local File Inclusion.
Exploits (1)
This repository contains a detailed technical writeup for CVE-2023-25260, a Local File Inclusion (LFI) vulnerability in Stimulsoft Designer (Web) versions 2023.1.3 and 2023.1.4. The writeup includes a proof of concept demonstrating how arbitrary local files can be read by manipulating the datasource file path input.
References (3)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N