exploitDog

CVE-2024-48093

Опубликовано: 30 окт. 2024

Источник: nvd

CVSS3: 8

EPSS Низкий

Описание

Unrestricted File Upload in the Discussions tab in Operately v.0.1.0 allows a privileged user to achieve Remote Code Execution via uploading and executing malicious files without validating file extensions or content types.

Ссылки

EPSS

Процентиль: 87%

0.03267

Низкий

8 High

CVSS3

Дефекты

CWE-434

Связанные уязвимости

GHSA-7w36-gg3q-f3vg

CVSS3: 8

github

больше 1 года назад

Unrestricted File Upload in the Discussions tab in Operately v.0.1.0 allows a privileged user to achieve Remote Code Execution via uploading and executing malicious files without validating file extensions or content types.

EPSS

Процентиль: 87%

0.03267

Низкий

8 High

CVSS3

Дефекты

CWE-434