PT-2024-32988 · Operately · Operately

Name of the Vulnerable Software and Affected Versions: Operately version 0.1.0 Description: The issue allows a privileged user to achieve Remote Code Execution via uploading and executing malicious files without validating file extensions or content types in the Discussions tab. Recommendations:...