Описание
EverShop 2.0.1 allows a remote unauthenticated attacker to upload arbitrary files and create directories via the /api/images endpoint. The endpoint is accessible without authentication by default, and server-side validation of uploaded files is insufficient. This can be abused to upload arbitrary content (including non-image files) which could impersonate user/admin login panels (exfiltrating credentials) and to perform a denial-of-service attack by exhausting disk space.
Ссылки
- ExploitIssue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:evershop:evershop:2.0.1:*:*:*:*:node.js:*:*
EPSS
Процентиль: 21%
0.0007
Низкий
7.5 High
CVSS3
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 7.5
github
2 месяца назад
EverShop 2.0.1 allows an unauthenticated user to upload files and create directories within the /api/images endpoint.
EPSS
Процентиль: 21%
0.0007
Низкий
7.5 High
CVSS3
Дефекты
CWE-434