Critical severity9.8NVD Advisory· Published May 23, 2023· Updated Jun 17, 2026
CVE-2023-27507
CVE-2023-27507
Description
MicroEngine Mailform version 1.1.0 to 1.1.8 contains a path traversal vulnerability. If the product's file upload function and server save option are enabled, a remote attacker may save an arbitrary file on the server and execute it.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 1.1.0 to 1.1.8
- Range: version 1.1.0 to 1.1.8
Patches
Vulnerability mechanics
References
2- jvn.jp/en/jp/JVN31701509/nvdThird Party Advisory
- microengine.jp/information/security_2023_05.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.