Vulnerability Detail

Enriched intelligence for a single CVE

PRO Back to KEVs

6.3

CVSS
Medium

CVE-2023-2648

PUBLISHED

Weaver E-Office uploadify.php unrestricted upload

Not yet in CISA KEV

Exploited in the wild PoC available Remote Low complexity No user interaction

Vendor: Weaver
Product: E-Office
Published: May 11, 2023
EPSS: 92.3% · 100% pctl

Automate This Intelligence with the Pro API

Everything on this page — CVSS, EPSS, exploit status, PoCs, scanner integrations, mentions, tags, and immediate honeypot data — is available programmatically for VM, SOC, and CTI workflows.

Learn about Pro

Description

A vulnerability was found in Weaver E-Office 9.5. It has been classified as critical. This affects an unknown part of the file /inc/jquery/uploadify/uploadify.php. The manipulation of the argument Filedata leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-228777 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. Es wurde eine Schwachstelle in Weaver E-Office 9.5 ausgemacht. Sie wurde als kritisch eingestuft. Es geht dabei um eine nicht klar definierte Funktion der Datei /inc/jquery/uploadify/uploadify.php. Durch Beeinflussen des Arguments Filedata mit unbekannten Daten kann eine unrestricted upload-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk passieren. Der Exploit steht zur öffentlichen Verfügung.

php nuclei_scanner

Weaknesses (CWE)

CWE-434

Unrestricted Upload of File with Dangerous Type

CVSS Scores

CVSS v3.1 6.3 Medium

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CVSS v3.0 6.3 Medium

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CVSS v2.0 6.5 Medium

AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitation Status

Exploited in the wild

Recorded 2025-06-02 00:00:00 UTC · The Shadowserver (via CIRCL)

Proof of concept available

Recorded 2026-06-12 14:20:38 UTC · Nuclei Templates

References

Known Exploited Vulnerability Sources

Catalogues that list this CVE as a known exploited vulnerability.

Source	Added
The Shadowserver (via CIRCL) First	2025-06-05 09:08 UTC

Scanner Integrations

Scanner	Reference	Detected
Nuclei	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-2648.yaml	Apr 25, 2025

Potential Proof of Concepts

These PoCs are unverified and could contain malware. Use at your own risk.

CVE-2023-2648

nuclei · Created Unknown

Timeline

Proof of Concept Exploit Available

2026-06-12 14:20 UTC
Added to KEVIntel

2025-06-05 09:08 UTC
Detected by Nuclei

2025-04-25 00:00 UTC
CVE Published to Public

2023-05-11 08:00 UTC
CVE ID Reserved

2023-05-11 05:32 UTC