Lucene search
China National Vulnerability DatabaseCNVD-2023-29392HistoryApr 11, 2023 - 12:00 a.m.
Online Computer and Laptop Store Arbitrary File Upload Vulnerability (CNVD-2023-29392)
2023-04-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
online computer and laptop store
arbitrary file upload
vulnerability
carlo montero
file validation
exploitation
remote code execution
0.002 Low
EPSS
Percentile
53.3%
Online Computer and Laptop Store is an online computer and laptop store from Carlo Monteroβs personal developer. Online Computer and Laptop Store v1.0 contains an arbitrary file upload vulnerability, which stems from the lack of valid validation of uploaded files in file/admin/?page=user, and can be exploited by attackers to upload malicious files to remotely execute arbitrary code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| carlo montero online computer and laptop store v | eq | 1.0 |
Related
nvd
nvd
CVE-2023-1942
2023-04-07 18:15:07
cvelist
cvelist
cve
cve
CVE-2023-1942
2023-04-07 18:15:07
prion
prion
Out-of-bounds
2023-04-07 18:15:00