High severityNVD Advisory· Published Dec 15, 2025· Updated Apr 15, 2026

CVE-2023-53869

Description

WEBIGniter 28.7.23 contains a file upload vulnerability that allows authenticated attackers to upload and execute dangerous PHP files through the media function. Attackers can leverage any created account to upload malicious PHP scripts that enable remote code execution on the application server.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

webigniter.netnvd
www.exploit-db.com/exploits/51736nvd
www.vulncheck.com/advisories/webigniter-unrestricted-file-upload-remote-code-executionnvd

News mentions

No linked articles in our index yet.

cvss	0.455
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000