File upload vulnerability in function upload in action/Core.class.php in zhimengzhe iBarn 1.5 allows remote attackers to run arbitrary code via avatar upload to index.php.
References
Link | Resource |
---|---|
https://github.com/zhimengzhe/iBarn/issues/13 | Exploit Third Party Advisory |
Configurations
Information
Published : 2022-12-15 11:15
Updated : 2022-12-20 08:31
NVD link : CVE-2020-20588
Mitre link : CVE-2020-20588
JSON object : View
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type
Products Affected
ibarn_project
- ibarn