Back to directory
WRITEUP #461

CVE-2023-25365 / XSS via file upload bypass

XSSStored XSSUnrestricted file upload
bycupc4k3
Program
October CMS
Published
Feb 8, 2024
Added to HackDex
Feb 27, 2024
Read Full Writeuphttps://cupc4k3.medium.com/cve-2023-25365-xss-via-file-upload-bypass-ddf4d2a106a7
RELATED WRITEUPS
Stored XSS in LibreOffice
XSSStored XSS
Persistent XSS on Microsoft Bing.com by poisoning Bingbot indexing
XSSStored XSS
Canary Token OSS Security Audit Report (Q2 2024)
XSSDoS
Type confusion attacks in ProseMirror editors
XSSType confusion
Self-XSS to ATO via Site Features
XSSSelf-XSS

Built with ❤️ by Shubham Rawat