CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-46210

An arbitrary file upload vulnerability in the MediaPool module of Redaxo CMS v5.17.1 allows attackers to execute arbitrary code via uploading a crafted file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.9%

CVSS Severity

CVSS v3 Score 7.2

References

https://gist.github.com/h4ckr4v3n/26eaa57d94f749b597ede8b404c234df
https://github.com/h4ckr4v3n/research_redaxo_5_17_1.git

Products affected by CVE-2024-46210

Redaxo » Redaxo » Version: 5.17.1

cpe:2.3:a:redaxo:redaxo:5.17.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-46210

Products

Pricing

Contact Us