CVE-2023-6070 — A server-side request forgery vulnerability in ESM prior to version 11.6.8 allows a low privileged authenticated user to upload arbitrary content, potentially altering configuration. This is possible — CVE Database · The Intelligence Room