{"uuid": "be673c60-c073-4688-b4b2-b574c831deae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-23138", "type": "seen", "source": "https://t.me/cibsecurity/16039", "content": "\u203c CVE-2020-23138 \u203c\n\nAn unrestricted file upload vulnerability was discovered in the Microweber 1.1.18 admin account page. An attacker can upload PHP code or any extension (eg- .exe) to the web server by providing image data and the image/jpeg content type with a .php extension.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-09T20:55:30.000000Z"}