Public disclosure for CVE-2023-31584.
CVE-2023-43838 An arbitrary file upload vulnerability in Personal Management System v1464 allows attackers to execute arbitrary code via uploading a crafted SVG file into a user profile's avatar [Additional Information] 1) Create alertsvg with the following content: <svg version="11" baseProfile="full" xmlns="wwww3org/2000/s