CVE-2021-45808

CVE-2021-45808

EPSS 1.6%

jpress v4.2.0 allows users to register an account by default. With the account, user can upload arbitrary files to the server.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://jpress.com https://github.com/JPressProjects/jpress https://github.com/JPressProjects/jpress/issues/173