CVE-2020-10228

CVE-2020-10228

EPSS 2.9%

A file upload vulnerability in vtecrm vtenext 19 CE allows authenticated users to upload files with a .pht extension, resulting in remote code execution.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://sourceforge.net/projects/vtecrm/https://vtenext.com/en/https://www.exploit-db.com/exploits/48804