exploitDog

GHSA-mfh9-9gwj-9822

Опубликовано: 19 дек. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

An issue in the component BlogEngine/BlogEngine.NET/AppCode/Api/UploadController.cs of BlogEngine.NET v3.3.8.0 allows attackers to execute arbitrary code via uploading a crafted PNG file.

An issue in the component BlogEngine/BlogEngine.NET/AppCode/Api/UploadController.cs of BlogEngine.NET v3.3.8.0 allows attackers to execute arbitrary code via uploading a crafted PNG file.

Ссылки

EPSS

Процентиль: 79%

0.0128

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2022-41418

CVSS3: 7.2

nvd

около 3 лет назад

An issue in the component BlogEngine/BlogEngine.NET/AppCode/Api/UploadController.cs of BlogEngine.NET v3.3.8.0 allows attackers to execute arbitrary code via uploading a crafted PNG file.

EPSS

Процентиль: 79%

0.0128

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-22