CVE-2023-53871

Published December 15th, 2025

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

N/A

Affected

PROJECT

Description

Soosyze 2.0.0 contains a file upload vulnerability that allows attackers to upload arbitrary HTML files with embedded PHP code to the application. Attackers can exploit the broken file upload mechanism to potentially view sensitive file paths and execute malicious PHP scripts on the server.

soosyze/soosyze

:stars: Soosyze CMS is a minimalist content management system in PHP, without database to create and manage your website easily. https://soosyze.com

GitHub