PT-2022-27190 · Unknown · Solarview Compact
Strik3R0X1
·
Published
2022-11-29
·
Updated
2022-12-01
·
CVE-2022-44354
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SolarView Compact versions 4.0 through 5.0
Description
The issue allows for Unrestricted File Upload via a crafted php file.
Recommendations
For SolarView Compact versions 4.0 through 5.0, consider restricting the upload of php files to prevent exploitation until a patch is available.
Exploit
Fix
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Solarview Compact