CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-35261

File Upload Vulnerability in Yupoxion BearAdmin before commit 10176153528b0a914eb4d726e200fd506b73b075 allows attacker to execute arbitrary remote code via the Upfile function of the extend/tools/Ueditor endpoint.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/yupoxiong/BearAdmin/issues/16
https://github.com/yupoxiong/BearAdmin/issues/16

Products affected by CVE-2021-35261

Bearadmin Project » Bearadmin » Version: N/A

cpe:2.3:a:bearadmin_project:bearadmin:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-35261

Products

Pricing

Contact Us