PT-2009-2011 · Dnn · Dotnetnuke
Publicado
2009-03-30
·
Atualizado
2009-08-19
·
CVE-2008-6541
CVSS v2.0
6.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
DotNetNuke versions prior to 4.8.2
Description
The issue concerns an unrestricted file upload vulnerability in the file manager module. This allows remote administrators to upload arbitrary files, potentially gaining privileges to the server.
Recommendations
For versions prior to 4.8.2, update to version 4.8.2 or later to resolve the issue.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Dotnetnuke