QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2023-53883

Back to search

CVE-2023-53883

Published: Dec 15, 2025

Modified: May 12, 2026

PUBLISHED

Description

Webedition CMS v2.9.8.8 contains a remote code execution vulnerability that allows authenticated attackers to inject system commands through PHP page creation. Attackers can create a new PHP page with malicious system commands in the description field to execute arbitrary commands on the server.

VendorProductVersions

Webedition

Webedition CMS

affected
2.9.8.8

Weaknesses (CWE)

CWE-94

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now