An arbitrary file upload vulnerability in Personal Management System v1.4.64 allows attackers to execute arbitrary code via uploading a crafted SVG file into a user profile's avatar.
{ "versions": [ { "introduced": "0" }, { "last_affected": "1.4.64" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-43838.json"