Critical severity9.8NVD Advisory· Published Apr 22, 2025· Updated Jun 17, 2026
CVE-2023-43958
CVE-2023-43958
Description
An arbitrary file upload vulnerability in the component /jquery-file-upload/server/php/index.php of Hospital Management System v4.0 allows an unauthenticated attacker to upload any file to the server and execute arbitrary code.
Affected products
1Patches
Vulnerability mechanics
References
2- flashy-lemonade-192.notion.site/Unauthenticated-arbitrary-file-upload-via-jQuery-File-Upload-in-Hospital-Management-System-3c02c1e8ef65432686321fcbad78bb1envdExploitThird Party Advisory
- flashy-lemonade-192.notion.site/Unauthenticated-arbitrary-file-upload-via-jQuery-File-Upload-in-Hospital-Management-System-3c02c1e8ef65432686321fcbad78bb1envdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.