EDB-51108
webappsphpVERIFIED
BoxBilling<=4.22.1.5 - Remote Code Execution (RCE)
CVE-2022-3552
zetc0de3/28/2023
CVE-2022-3552
7.2HIGHUnrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0.0.1.
Published: 10/17/2022Updated: 11/21/2024
Description
Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0.0.1.
AI AnalysisPowered by AI
Affected Products
boxbillingboxbilling
Available Exploits (1)
References
- http://packetstormsecurity.com/files/171542/BoxBilling-4.22.1.5-Remote-Code-Execution.html
- https://github.com/boxbilling/boxbilling/commit/b6705995785eaa8653e876318c9b3d82060dc945Third Party Advisory
- https://huntr.dev/bounties/c6e2973d-386d-4667-9426-10d10828539bExploitPatchThird Party Advisory
- http://packetstormsecurity.com/files/171542/BoxBilling-4.22.1.5-Remote-Code-Execution.html
- https://github.com/boxbilling/boxbilling/commit/b6705995785eaa8653e876318c9b3d82060dc945Third Party Advisory
- https://huntr.dev/bounties/c6e2973d-386d-4667-9426-10d10828539bExploitPatchThird Party Advisory