Описание
An arbitrary file upload vulnerability in the Upload Template function of Dolibarr ERP CRM up to v19.0.1 allows attackers to execute arbitrary code via uploading a crafted .SQL file.
Ссылки
- Product
- Third Party Advisory
- Product
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 19.0.2 (исключая)
cpe:2.3:a:dolibarr:dolibarr_erp\/crm:*:*:*:*:*:*:*:*
EPSS
Процентиль: 46%
0.00234
Низкий
8.8 High
CVSS3
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 8.8
ubuntu
больше 1 года назад
An arbitrary file upload vulnerability in the Upload Template function of Dolibarr ERP CRM up to v19.0.1 allows attackers to execute arbitrary code via uploading a crafted .SQL file.
CVSS3: 8.8
debian
больше 1 года назад
An arbitrary file upload vulnerability in the Upload Template function ...
EPSS
Процентиль: 46%
0.00234
Низкий
8.8 High
CVSS3
Дефекты
CWE-94