CVE-2023-53869

UNKNOWN 0.0

WEBIGniter 28.7.23 Unrestricted File Upload Remote Code Execution

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

WEBIGniter 28.7.23 contains a file upload vulnerability that allows authenticated attackers to upload and execute dangerous PHP files through the media function. Attackers can leverage any created account to upload malicious PHP scripts that enable remote code execution on the application server.

CWE	CWE-434
Vendor	webigniter
Product	webigniter
Published	Dec 15, 2025
Last Updated	Apr 7, 2026

Stay Ahead of the Next One

Get instant alerts for webigniter webigniter

Be the first to know when new unknown vulnerabilities affecting webigniter webigniter are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

WebIGniter / WebIGniter

28.7.23

References

NVD ↗ CVE.org ↗ EPSS Data ↗

exploit-db.com: https://www.exploit-db.com/exploits/51736 webigniter.net: https://webigniter.net/ vulncheck.com: https://www.vulncheck.com/advisories/webigniter-unrestricted-file-upload-remote-code-execution

Credits

nu11secur1ty