CVE-2023-23314
Published
CVSS v3
8.8
HIGH
CVSS v2
N/A
Affected
1
PROJECT
Description
An arbitrary file upload vulnerability in the /api/upload component of zdir v3.2.0 allows attackers to execute arbitrary code via a crafted .ssh file.
A multifunctional private storage program that integrates file indexing, online preview, and sharing, supporting both WebDAV and cloud download.
GitHub