CVE-2022-42092

Unrestricted Upload of File with Dangerous Type in packagist/backdrop/backdrop

Identifiers

GHSA-33c9-rppf-m7fq, CVE-2022-42092

Package Slug

packagist/backdrop/backdrop

Vulnerability

Unrestricted Upload of File with Dangerous Type

Description

Backdrop CMS 1.22.0 has Unrestricted File Upload vulnerability via 'themes' that allows attackers to Remote Code Execution.

Affected Versions

All versions up to 1.22.0

Solution

Unfortunately, there is no solution available yet.

Last Modified

2023-01-19

source