4 matches found
FlatPress < 1.3 RCE Vulnerability
FlatPress is prone to a remote code execution RCE vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
CVE-2022-40048
Flatpress v1.2.1 was discovered to contain a remote code execution RCE vulnerability in the Upload File function...
CVE-2022-40048
CVE-2022-40048 concerns Flatpress v1.2.1, with a remote code execution (RCE) vulnerability in the Upload File function. Multiple sources (NVD, Red Hat, NVD feed, OpenVAS) confirm an RCE impacting Flatpress in Version 1.2.1, via the file upload mechanism, yielding high impact on confidentiality, i...
Command Injection Over HTTP (CVE-2019-9166; CVE-2021-43936; CVE-2022-1813; CVE-2022-24086; CVE-2022-24193; CVE-2022-26536; CVE-2022-32092; CVE-2022-37810; CVE-2022-40048)
A command Injection over HTTP vulnerability has been reported. A remote attacker can exploit this issue by sending a specially crafted request to the victim. Successful exploitation would allow an attacker to execute arbitrary code on the target machine...