Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:34609
HistoryMar 11, 2022 - 9:07 a.m.

Arbitrary File Upload

2022-03-1109:07:00
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
croogo
file upload
arbitrary
vulnerability

EPSS

0.011

Percentile

84.7%

JSON

croogo/croogo is vulnerable to arbitrary file upload. The vulnerability exists when uploading a php file via /croogo/admin/file-manager/attachments/add which allows a malicious user to perform unwanted file uploads.

Related

cvelist 1
prion 1
osv 2
github 1
nvd 1
cve 1
exploitdb 1
cvelist
cvelist
CVE-2021-44673
2022-03-10 18:04:16
prion
prion
Remote code execution
2022-03-10 18:15:00
osv
osv
CVE-2021-44673
2022-03-10 18:15:07
Unrestricted Upload of File with Dangerous Type in Croogo
2022-03-11 00:02:02
github
github
Unrestricted Upload of File with Dangerous Type in Croogo
2022-03-11 00:02:02
nvd
nvd
CVE-2021-44673
2022-03-10 18:15:07
cve
cve
CVE-2021-44673
2022-03-10 18:15:07
exploitdb
exploitdb
Croogo 3.0.2 - Remote Code Execution (Authenticated)
2021-12-06 00:00:00

EPSS

0.011

Percentile

84.7%

JSON
Related for VERACODE:34609
cvelist1prion1osv2github1nvd1cve1exploitdb1