High severity8.8NVD Advisory· Published Sep 14, 2023· Updated Jun 17, 2026
CVE-2023-42180
CVE-2023-42180
Description
An arbitrary file upload vulnerability in the /user/upload component of lenosp 1.0-1.2.0 allows attackers to execute html code via a crafted JPG file.
Affected products
2- lenosp/lenospdescription
Patches
Vulnerability mechanics
References
1- gitee.com/zzdevelop/lenosp/issues/I7X760nvdExploitIssue Tracking
News mentions
0No linked articles in our index yet.