CVE-2023-30090 Information

Description

Semcms Shop v4.2 was discovered to contain an arbitrary file uplaod vulnerability via the component SEMCMS_Upfile.php. This vulnerability allows attackers to execute arbitrary code via uploading a crafted PHP file.

Reference

https://github.com/xlccccc/vuln/tree/master/Semcms