3 matches found
CVE-2022-34919
The file upload wizard in Zengenti Contensis Classic before 15.2.1.79 does not correctly check that a user has authenticated. By uploading a crafted aspx file, it is possible to execute arbitrary commands...
CVE-2022-34919
The file upload wizard in Zengenti Contensis Classic before 15.2.1.79 does not correctly check that a user has authenticated. By uploading a crafted aspx file, it is possible to execute arbitrary commands...
CVE-2022-34919
CVE-2022-34919 affects Zengenti Contensis Classic before 15.2.1.79. The vulnerability lies in the file upload wizard, which does not properly verify that the user is authenticated, enabling a crafted aspx file to execute arbitrary commands. The issue is evidenced by public disclosures with a CVSS...