exploitDog

GHSA-f842-vw35-9x42

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

MonoX through 5.1.40.5152 allows remote code execution via HTML5Upload.ashx or Pages/SocialNetworking/lng/en-US/PhotoGallery.aspx because of deserialization in ModuleGallery.HTML5Upload, ModuleGallery.SilverLightUploadModule, HTML5Upload, and SilverLightUploadHandler.

MonoX through 5.1.40.5152 allows remote code execution via HTML5Upload.ashx or Pages/SocialNetworking/lng/en-US/PhotoGallery.aspx because of deserialization in ModuleGallery.HTML5Upload, ModuleGallery.SilverLightUploadModule, HTML5Upload, and SilverLightUploadHandler.

Ссылки

EPSS

Процентиль: 87%

0.0325

Низкий

CVE ID

Связанные уязвимости

CVE-2020-12471

CVSS3: 9.8

nvd

почти 6 лет назад

MonoX through 5.1.40.5152 allows remote code execution via HTML5Upload.ashx or Pages/SocialNetworking/lng/en-US/PhotoGallery.aspx because of deserialization in ModuleGallery.HTML5Upload, ModuleGallery.SilverLightUploadModule, HTML5Upload, and SilverLightUploadHandler.

EPSS

Процентиль: 87%

0.0325

Низкий

CVE ID