PT-2021-23747 · Fastadmin · Fastadmin

Published

2021-12-13

·

Updated

2021-12-17

·

CVE-2021-43117

CVSS v2.0

10

Critical

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions fastadmin version 1.2.1
Description The issue allows for arbitrary code execution through shell access due to a file upload vulnerability.
Recommendations For fastadmin version 1.2.1, update to a version that fixes the file upload vulnerability to prevent arbitrary code execution.

Exploit

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2021-43117

Affected Products

Fastadmin