InvenTree is an open source inventory management system from InvenTree open source. A file upload vulnerability exists in versions prior to InvenTree 0.7.2, which stems from the lack of validation of uploaded files by the application. An attacker could exploit the vulnerability to upload malicious files to remotely execute arbitrary code.
CPE | Name | Operator | Version |
---|---|---|---|
inventree inventree | lt | 0.7.2 |