🔐 CVE Alert

CVE-2023-53883

UNKNOWN 0.0

Webedition CMS v2.9.8.8 Remote Code Execution via PHP Page Creation

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

Webedition CMS v2.9.8.8 contains a remote code execution vulnerability that allows authenticated attackers to inject system commands through PHP page creation. Attackers can create a new PHP page with malicious system commands in the description field to execute arbitrary commands on the server.

CWE CWE-94
Vendor webedition
Product webedition cms
Published Dec 15, 2025
Last Updated Apr 7, 2026
Stay Ahead of the Next One

Get instant alerts for webedition webedition cms

Be the first to know when new unknown vulnerabilities affecting webedition webedition cms are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Webedition / Webedition CMS
2.9.8.8

References

NVD ↗ CVE.org ↗ EPSS Data ↗
exploit-db.com: https://www.exploit-db.com/exploits/51661 webedition.org: https://www.webedition.org/ vulncheck.com: https://www.vulncheck.com/advisories/webedition-cms-v-remote-code-execution-via-php-page-creation

Credits

Mirabbas Ağalarov