Webiness Inventory 2.3 suffers from an Arbitrary File upload vulnerability via PHP code in the protected/library/ajax/WsSaveToModel.php logo parameter.
CPE | Name | Operator | Version |
---|---|---|---|
webiness_inventory | eq | 2.0 | |
webiness_inventory | eq | 2.3 | |
webiness_inventory | eq | 2.2 | |
webiness_inventory | eq | 2.1 |