Описание
Unrestricted Upload of File with Dangerous Type in Microweber
In Microweber prior to 1.2.12, a malicious actor may abuse the Backup/Restore feature to achieve Remote Code Execution.
Пакеты
Наименование
microweber/microweber
composer
Затронутые версииВерсия исправления
< 1.2.12
1.2.12
Связанные уязвимости
CVSS3: 6.7
nvd
почти 4 года назад
Abusing Backup/Restore feature to achieve Remote Code Execution in GitHub repository microweber/microweber prior to 1.2.12.