Info Published: Dec 15, 2025 Modified: Dec 15, 2025

CVE-2023-53889

0 CVSS Score Info

Export CVE-2023-53889 Data:

Link copied!

Description

Perch CMS 3.2 contains a remote code execution vulnerability that allows authenticated administrators to upload arbitrary PHP files through the assets management interface. Attackers can upload a malicious .phar file with embedded system command execution capabilities to execute arbitrary commands on the server.

Weaknesses (CWE)

CWE-434

References & External Links

https://grabaperch.com/
https://www.exploit-db.com/exploits/51620
https://www.vulncheck.com/advisories/perch-cms-remote-code-execution-via-unrestricted-file-upload
https://www.exploit-db.com/exploits/51620

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

CVE History Timeline

Dec 15, 2025 21:15 New CVE Received

Dec 15, 2025 22:15 CVE Modified

← Back to CVE Tracker

Description

Weaknesses (CWE)

References & External Links

External Resources

Related Vulnerabilities

CVE History Timeline