Описание
An authenticated arbitrary file upload vulnerability in the component /msg/sendfiles of DooTask v1.0.51 allows attackers to execute arbitrary code via uploading a crafted file.
Ссылки
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:dootask:dootask:1.0.51:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00088
Низкий
8.8 High
CVSS3
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 8.8
github
6 месяцев назад
An authenticated arbitrary file upload vulnerability in the component /msg/sendfiles of DooTask v1.0.51 allows attackers to execute arbitrary code via uploading a crafted file.
EPSS
Процентиль: 25%
0.00088
Низкий
8.8 High
CVSS3
Дефекты
CWE-434