CVE-2012-4269

CVE-2012-4269

EPSS 2.1%

Unrestricted file upload vulnerability in eFront 3.6.11 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension via an attachment in a message.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://packetstormsecurity.org/files/112496/Efront-3.6.11-Cross-Site-Scripting-Shell-Upload.html https://exchange.xforce.ibmcloud.com/vulnerabilities/75443 http://www.securityfocus.com/bid/53412