exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2022-29622

больше 3 лет назад

An arbitrary file upload vulnerability in formidable v3.1.4 allows attackers to execute arbitrary code via a crafted filename. NOTE: some third parties dispute this issue because the product has common use cases in which uploading arbitrary files is the desired behavior. Also, there are configuration options in all versions that can change the default behavior of how files are handled. Strapi does not consider this to be a valid vulnerability.

CVSS3: 9.8

EPSS: Средний

CVE-2022-29622

больше 3 лет назад

An arbitrary file upload vulnerability in formidable v3.1.4 allows attackers to execute arbitrary code via a crafted filename. NOTE: some third parties dispute this issue because the product has common use cases in which uploading arbitrary files is the desired behavior. Also, there are configuration options in all versions that can change the default behavior of how files are handled. Strapi does not consider this to be a valid vulnerability.

CVSS3: 9.8

EPSS: Средний

CVE-2022-29622

больше 3 лет назад

An arbitrary file upload vulnerability in formidable v3.1.4 allows att ...

CVSS3: 9.8

EPSS: Средний

GHSA-8cp3-66vr-3r4c

больше 3 лет назад

Formidable arbitrary file upload

CVSS3: 9.8

EPSS: Средний

BDU:2022-04446

больше 3 лет назад

Уязвимость библиотеки Formidable, связанная с неограниченной загрузкой файлов опасного типа, позволяющая нарушителю выполнить произвольный код

CVSS3: 9.8

EPSS: Средний

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2022-29622 An arbitrary file upload vulnerability in formidable v3.1.4 allows attackers to execute arbitrary code via a crafted filename. NOTE: some third parties dispute this issue because the product has common use cases in which uploading arbitrary files is the desired behavior. Also, there are configuration options in all versions that can change the default behavior of how files are handled. Strapi does not consider this to be a valid vulnerability.	CVSS3: 9.8	24% Средний	больше 3 лет назад
CVE-2022-29622 An arbitrary file upload vulnerability in formidable v3.1.4 allows attackers to execute arbitrary code via a crafted filename. NOTE: some third parties dispute this issue because the product has common use cases in which uploading arbitrary files is the desired behavior. Also, there are configuration options in all versions that can change the default behavior of how files are handled. Strapi does not consider this to be a valid vulnerability.	CVSS3: 9.8	24% Средний	больше 3 лет назад
CVE-2022-29622 An arbitrary file upload vulnerability in formidable v3.1.4 allows att ...	CVSS3: 9.8	24% Средний	больше 3 лет назад
GHSA-8cp3-66vr-3r4c Formidable arbitrary file upload	CVSS3: 9.8	24% Средний	больше 3 лет назад
BDU:2022-04446 Уязвимость библиотеки Formidable, связанная с неограниченной загрузкой файлов опасного типа, позволяющая нарушителю выполнить произвольный код	CVSS3: 9.8	24% Средний	больше 3 лет назад

Уязвимостей на страницу