| Titel | https://github.com/osuuu/LightPicture LightPicture 1.2.2 unauthorized file upload |
|---|
| Beschreibung | osuuu LightPicture 1.2.2 version has an unauthorized file upload vulnerability. This vulnerability allows anyone to upload PHP files to the server without logging in, thereby being able to execute arbitrary PHP code to obtain server permissions. |
|---|
| Quelle | ⚠️ https://github.com/sheratan4/cve/issues/1 |
|---|
| Benutzer | sheratan (UID 71236) |
|---|
| Einreichung | 21.02.2025 12:29 (vor 1 Jahr) |
|---|
| Moderieren | 01.03.2025 20:58 (8 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 298102 [osuuu LightPicture 1.2.2 /app/controller/Api.php upload Datei erweiterte Rechte] |
|---|
| Punkte | 16 |
|---|