QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2023-34855

Back to search

CVE-2023-34855

Published: Jun 12, 2023

Modified: Jan 3, 2025

PUBLISHED

Description

A Cross Site Scripting (XSS) vulnerability in Youxun Electronic Equipment (Shanghai) Co., Ltd AC Centralized Management Platform v1.02.040 allows attackers to execute arbitrary code via uploading a crafted HTML file to the interface /upfile.cgi.

VendorProductVersions

n/a

n/a

affected
n/a

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now