PT-2023-31819 · Unknown · Verge3D Publishing/E-Commerce

Rafie Muhammad

Publicado

2023-12-29

Atualizado

2024-01-08

CVE-2023-51421

CVSS v3.1

9.9

Crítica

Vetor

AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Verge3D Publishing and E-Commerce versions n/a through 4.5.2

Description The issue is related to an Unrestricted Upload of File with Dangerous Type vulnerability. This allows for the upload of files with potentially dangerous types, which could lead to security issues.

Recommendations For versions n/a through 4.5.2, update to a version later than 4.5.2 to resolve the issue. At the moment, there is no information about additional mitigation measures.

Correção

Unrestricted File Upload

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-434

Identificadores relacionados

CVE-2023-51421

Produtos afetados

Verge3D Publishing/E-Commerce

PT-2023-31819 · Unknown · Verge3D Publishing/E-Commerce

CVE-2023-51421

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8