AI Score
Confidence
High
SSVC
Exploitation
poc
Automatable
no
Technical Impact
total
An arbitrary file upload vulnerability in the /user/upload component of lenosp 1.0-1.2.0 allows attackers to execute html code via a crafted JPG file.
gitee.com/zzdevelop/lenosp/issues/I7X760