CVE-2020-12471

2020-04-29T21:15:00
ID CVE-2020-12471
Type cve
Reporter cve@mitre.org
Modified 2020-05-04T16:37:00

Description

MonoX through 5.1.40.5152 allows remote code execution via HTML5Upload.ashx or Pages/SocialNetworking/lng/en-US/PhotoGallery.aspx because of deserialization in ModuleGallery.HTML5Upload, ModuleGallery.SilverLightUploadModule, HTML5Upload, and SilverLightUploadHandler.