Vulnerabilities > Naziinfotech

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-08	CVE-2023-5957	Unrestricted Upload of File with Dangerous Type vulnerability in Naziinfotech NI Purchase Order(Po) for Woocommerce The Ni Purchase Order(PO) For WooCommerce WordPress plugin through 1.2.1 does not validate logo and signature image files uploaded in the settings, allowing high privileged user to upload arbitrary files to the web server, triggering an RCE vulnerability by uploading a web shell. network low complexity naziinfotech CWE-434	7.2

Vulnerabilities > Naziinfotech {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Naziinfotech"}]}