exploitDog

GHSA-h65f-h2hp-pv65

Опубликовано: 22 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 10

Описание

File Upload vulnerability in TMS Global Software TMS Management Console v.6.3.7.27386.20250818 allows a remote attacker to execute arbitrary code via the Logo upload in /Customer/AddEdit

File Upload vulnerability in TMS Global Software TMS Management Console v.6.3.7.27386.20250818 allows a remote attacker to execute arbitrary code via the Logo upload in /Customer/AddEdit

Ссылки

EPSS

Процентиль: 56%

0.00344

Низкий

10 Critical

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2025-69828

CVSS3: 10

nvd

16 дней назад

File Upload vulnerability in TMS Global Software TMS Management Console v.6.3.7.27386.20250818 allows a remote attacker to execute arbitrary code via the Logo upload in /Customer/AddEdit

EPSS

Процентиль: 56%

0.00344

Низкий

10 Critical

CVSS3

CVE ID

Дефекты

CWE-434