WEBIGniter

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2023-53869	WEBIGniter WEBIGniter	Hig	0.57	—	0.00		Dec 15, 2025	WEBIGniter 28.7.23 contains a file upload vulnerability that allows authenticated attackers to upload and execute dangerous PHP files through the media function. Attackers can leverage any created account to upload malicious PHP scripts that enable remote code execution on the application server.
CVE-2023-53735	WEBIGniter WEBIGniter	Med	0.34	—	0.00		Dec 4, 2025	WEBIGniter 28.7.23 contains a cross-site scripting vulnerability in the user creation process that allows unauthenticated attackers to execute malicious JavaScript code, enabling potential XSS attacks.

CVE-2023-53869HigDec 15, 2025
WEBIGniter
WEBIGniter
risk 0.57cvss —epss 0.00
WEBIGniter 28.7.23 contains a file upload vulnerability that allows authenticated attackers to upload and execute dangerous PHP files through the media function. Attackers can leverage any created account to upload malicious PHP scripts that enable remote code execution on the application server.
CVE-2023-53735MedDec 4, 2025
WEBIGniter
WEBIGniter
risk 0.34cvss —epss 0.00
WEBIGniter 28.7.23 contains a cross-site scripting vulnerability in the user creation process that allows unauthenticated attackers to execute malicious JavaScript code, enabling potential XSS attacks.