3 matches found
CVE-2023-45856
qdPM 9.2 allows remote code execution by using the Add Attachments feature of Edit Project to upload a .php file to the /uploads URI...
CVE-2023-45856
qdPM 9.2 allows remote code execution by using the Add Attachments feature of Edit Project to upload a .php file to the /uploads URI...
CVE-2023-45856
CVE-2023-45856 affects qdPM 9.2. An RCE is possible by using the Add Attachments feature in Edit Project to upload a PHP file to the /uploads URI. Impact and exploitation context are described in the sources; no remediation details are provided in the supplied documents. Processed references incl...