2 matches found
CVE-2022-45338
creationtimestamp| type| source ---|---|--- 2025-04-21 15:02:59+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12677...
CVE-2022-45338
The CVE-2022-45338 issue affects Exact Synergy Enterprise 267 (pre-267SP13) and 500 (pre-500SP6). It is an arbitrary file upload vulnerability in the profile picture upload function that permits executing arbitrary code via a crafted SVG file. Affected component: profile picture upload handler; r...