Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:50 a.m.8 views

CVE-2022-37346

EC-CUBE plugin 'Product Image Bulk Upload Plugin' 1.0.0 and 4.1.0 contains an insufficient verification vulnerability when uploading files. Exploiting this vulnerability allows a remote unauthenticated attacker to upload arbitrary files other than image files. If a user with an administrative...

9.8CVSS7.2AI score0.00982EPSS
Exploits0References1
NVD
NVD
added 2022/09/27 11:15 p.m.17 views

CVE-2022-37346

EC-CUBE plugin 'Product Image Bulk Upload Plugin' 1.0.0 and 4.1.0 contains an insufficient verification vulnerability when uploading files. Exploiting this vulnerability allows a remote unauthenticated attacker to upload arbitrary files other than image files. If a user with an administrative...

9.8CVSS0.00982EPSS
Exploits0References2
CVE
CVE
added 2022/09/27 1:55 a.m.56 views

CVE-2022-37346

The CVE-2022-37346 issue affects the EC-CUBE plugin “Product Image Bulk Upload Plugin” versions 1.0.0 and 4.1.0, which has an insufficient verification (CWE-20) when uploading files. An unauthenticated remote attacker can upload arbitrary non-image files, and if a user with administrative privile...

9.8CVSS9.5AI score0.00982EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/27 1:55 a.m.8 views

CVE-2022-37346

EC-CUBE plugin 'Product Image Bulk Upload Plugin' 1.0.0 and 4.1.0 contains an insufficient verification vulnerability when uploading files. Exploiting this vulnerability allows a remote unauthenticated attacker to upload arbitrary files other than image files. If a user with an administrative...

9.7AI score0.00982EPSS
Exploits0References2
Rows per page
Query Builder