4 matches found
CVE-2022-36749
RPi-Jukebox-RFID v2.3.0 was discovered to contain a command injection vulnerability via the component /htdocs/utils/Files.php. This vulnerability is exploited via a crafted payload injected into the file name of an uploaded file...
CVE-2022-36749
RPi-Jukebox-RFID v2.3.0 was discovered to contain a command injection vulnerability via the component /htdocs/utils/Files.php. This vulnerability is exploited via a crafted payload injected into the file name of an uploaded file...
CVE-2022-36749
RPi-Jukebox-RFID v2.3.0 is affected by a command injection vulnerability in the /htdocs/utils/Files.php component. The issue is triggered by a crafted payload embedded in the file name of an uploaded file, enabling potential arbitrary code execution. CVSS 3.1 base score is 9.8 (CRITICAL) with net...
CVE-2022-36749
RPi-Jukebox-RFID v2.3.0 was discovered to contain a command injection vulnerability via the component /htdocs/utils/Files.php. This vulnerability is exploited via a crafted payload injected into the file name of an uploaded file...