Описание
Menalto Gallery before 2.2.4 does not properly check for malicious file extensions during file uploads, which allows attackers to execute arbitrary code via the (1) Core application or (2) MIME module.
Ссылки
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1Версия до 2.2.3 (включая)
cpe:2.3:a:menalto:gallery:*:*:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.00732
Низкий
7.5 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
ubuntu
почти 18 лет назад
Menalto Gallery before 2.2.4 does not properly check for malicious file extensions during file uploads, which allows attackers to execute arbitrary code via the (1) Core application or (2) MIME module.
debian
почти 18 лет назад
Menalto Gallery before 2.2.4 does not properly check for malicious fil ...
github
больше 3 лет назад
Menalto Gallery before 2.2.4 does not properly check for malicious file extensions during file uploads, which allows attackers to execute arbitrary code via the (1) Core application or (2) MIME module.
EPSS
Процентиль: 72%
0.00732
Низкий
7.5 High
CVSS2
Дефекты
CWE-20