exploitDog

GHSA-vvcx-j7jq-9x76

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Unrestricted file upload vulnerability in upload.php in dreamLog (aka dreamblog) 0.5 allows remote attackers to upload and execute arbitrary PHP code in uploads/images/ via the uploadedFile[] parameter.

Unrestricted file upload vulnerability in upload.php in dreamLog (aka dreamblog) 0.5 allows remote attackers to upload and execute arbitrary PHP code in uploads/images/ via the uploadedFile[] parameter.

Ссылки

EPSS

Процентиль: 89%

0.04962

Низкий

CVE ID

Связанные уязвимости

CVE-2007-3403

nvd

больше 18 лет назад

Unrestricted file upload vulnerability in upload.php in dreamLog (aka dreamblog) 0.5 allows remote attackers to upload and execute arbitrary PHP code in uploads/images/ via the uploadedFile[] parameter.

EPSS

Процентиль: 89%

0.04962

Низкий

CVE ID