Описание
Unrestricted Upload of File with Dangerous Type in Umbraco CMS
Umbraco CMS 8.5.3 allows an authenticated file upload (and consequently Remote Code Execution) via the Install Package functionality.
Пакеты
Наименование
UmbracoCms
nuget
Затронутые версииВерсия исправления
<= 8.5.3
8.5.4
Связанные уязвимости
CVSS3: 6.5
nvd
почти 6 лет назад
Umbraco CMS 8.5.3 allows an authenticated file upload (and consequently Remote Code Execution) via the Install Package functionality.