Описание
Unrestricted file upload vulnerability in includes/shared_scripts/wysiwyg_editor/assetmanager/assetmanager.asp in DMXReady Registration Manager 1.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in assets/webblogmanager.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:dmxready:registration_manager:1.1:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03299
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Unrestricted file upload vulnerability in includes/shared_scripts/wysiwyg_editor/assetmanager/assetmanager.asp in DMXReady Registration Manager 1.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in assets/webblogmanager.
EPSS
Процентиль: 87%
0.03299
Низкий
6.8 Medium
CVSS2
Дефекты
NVD-CWE-Other