Vulnerabilities

CVE-2020-5505

by Fred · 14/01/2020

Freelancy v1.0.0 allows remote command execution via the "file":"data:application/x-php;base64 substring (in conjunction with "type":"application/x-php"} to the /api/files/ URI.

Date published : 2020-01-14

http://packetstormsecurity.com/files/155922/Freelancy-1.0.0-Remote-Code-Execution.html

Similar

Tags: Cybersecurity Alert