Цены Enterprise

CVE-2022-3552

7.2HIGH

Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0.0.1.

Опубликовано: 10/17/2022Обновлено: 11/21/2024

Посмотреть на NVD Посмотреть на MITRE

Описание

Unrestricted Upload of File with Dangerous Type in GitHub repository boxbilling/boxbilling prior to 0.0.1.

ИИ-АнализНа базе ИИ

Затронутые продукты

boxbillingboxbilling

Доступные эксплойты (1)

webappsphpVERIFIED

BoxBilling<=4.22.1.5 - Remote Code Execution (RCE)

zetc0de3/28/2023

Ссылки

http://packetstormsecurity.com/files/171542/BoxBilling-4.22.1.5-Remote-Code-Execution.html
https://github.com/boxbilling/boxbilling/commit/b6705995785eaa8653e876318c9b3d82060dc945
Third Party Advisory
https://huntr.dev/bounties/c6e2973d-386d-4667-9426-10d10828539b
ExploitPatchThird Party Advisory
http://packetstormsecurity.com/files/171542/BoxBilling-4.22.1.5-Remote-Code-Execution.html
https://github.com/boxbilling/boxbilling/commit/b6705995785eaa8653e876318c9b3d82060dc945
Third Party Advisory
https://huntr.dev/bounties/c6e2973d-386d-4667-9426-10d10828539b
ExploitPatchThird Party Advisory