料金エンタープライズ

CVE-2022-3552

7.2HIGH

Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0.0.1.

公開日: 10/17/2022更新日: 11/21/2024

NVDで表示 MITREで表示

説明

Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0.0.1.

AI分析AIによる分析

影響を受ける製品

boxbillingboxbilling

利用可能なエクスプロイト (1)

webappsphpVERIFIED

BoxBilling<=4.22.1.5 - Remote Code Execution (RCE)

zetc0de3/28/2023

参照

http://packetstormsecurity.com/files/171542/BoxBilling-4.22.1.5-Remote-Code-Execution.html
https://github.com/boxbilling/boxbilling/commit/b6705995785eaa8653e876318c9b3d82060dc945
Third Party Advisory
https://huntr.dev/bounties/c6e2973d-386d-4667-9426-10d10828539b
ExploitPatchThird Party Advisory
http://packetstormsecurity.com/files/171542/BoxBilling-4.22.1.5-Remote-Code-Execution.html
https://github.com/boxbilling/boxbilling/commit/b6705995785eaa8653e876318c9b3d82060dc945
Third Party Advisory
https://huntr.dev/bounties/c6e2973d-386d-4667-9426-10d10828539b
ExploitPatchThird Party Advisory