exploitDog

GHSA-phwp-cpcf-rpx4

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Unrestricted File Upload in Bludit v3.8.1 allows remote attackers to execute arbitrary code by uploading malicious files via the component 'bl-kereln/ajax/upload-logo.php'.

Unrestricted File Upload in Bludit v3.8.1 allows remote attackers to execute arbitrary code by uploading malicious files via the component 'bl-kereln/ajax/upload-logo.php'.

Ссылки

EPSS

Процентиль: 93%

0.09439

Низкий

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2020-18879

CVSS3: 9.8

nvd

больше 4 лет назад

Unrestricted File Upload in Bludit v3.8.1 allows remote attackers to execute arbitrary code by uploading malicious files via the component 'bl-kereln/ajax/upload-logo.php'.

EPSS

Процентиль: 93%

0.09439

Низкий

CVE ID

Дефекты

CWE-434