4 matches found
CVE-2022-46610
72crm v9 was discovered to contain an arbitrary file upload vulnerability via the avatar upload function. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2022-46610
creationtimestamp| type| source ---|---|--- 2025-04-09 15:47:43+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11096...
CVE-2022-46610
72crm v9 was discovered to contain an arbitrary file upload vulnerability via the avatar upload function. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2022-46610
CVE-2022-46610 affects 72crm v9. The issue is an arbitrary file upload via the avatar upload function, allowing execution of crafted PHP code. Underlying cause: improper handling of uploaded files in the avatar feature (no details on root cause beyond the description). Impact per sources: potenti...