Lucene search
Veracode Vulnerability DatabaseVERACODE:34457HistoryFeb 28, 2022 - 3:25 p.m.
Unrestricted File Upload
2022-02-2815:25:47
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.001 Low
EPSS
Percentile
45.7%
tribalsystems/zenario is vulnerable to unrestricted file upload. The vulnerability exists due to the use of .phar custom file type which allows an attacker to perform arbitrary file uploads.
| CPE | Name | Operator | Version |
|---|---|---|---|
| tribalsystems/zenario | le | 9.2 | |
| tribalsystems/zenario | le | 9.2 |
Related
cvelist
cvelist
CVE-2022-23043
2022-02-22 18:21:02
osv
osv
File upload restriction bypass in Zenario CMS
2022-02-25 00:01:07
CVE-2022-23043
2022-02-24 15:15:28
cve
cve
CVE-2022-23043
2022-02-24 15:15:28
prion
prion
Unrestricted file upload
2022-02-24 15:15:00
nvd
nvd
CVE-2022-23043
2022-02-24 15:15:28
github
github
File upload restriction bypass in Zenario CMS
2022-02-25 00:01:07