← voltar
CVE-2020-10557

CVE-2020-10557

EPSS 1.4%
An issue was discovered in AContent through 1.4. It allows the user to run commands on the server with a low-privileged account. The upload section in the file manager page contains an arbitrary file upload vulnerability via upload.php. The extension .php7 bypasses file upload restrictions.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/cinzinga/CVEs/tree/master/CVE-2020-10557https://sourceforge.net/projects/acontent/