Critical severity9.8NVD Advisory· Published May 23, 2023· Updated Jun 17, 2026
CVE-2023-27397
CVE-2023-27397
Description
Unrestricted upload of file with dangerous type exists in MicroEngine Mailform version 1.1.0 to 1.1.8. If the product's file upload function and server save option are enabled, a remote attacker may save an arbitrary file on the server and execute it.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 1.1.0 to 1.1.8
- Range: version 1.1.0 to 1.1.8
Patches
Vulnerability mechanics
References
2- jvn.jp/en/jp/JVN31701509/nvdThird Party Advisory
- microengine.jp/information/security_2023_05.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.