Likeshop

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2024-0352 HIGH POC THREAT Act Now

Likeshop e-commerce platform through version 2.5.7.20210311 contains a critical unrestricted file upload vulnerability in the FileServer::userFormImage function. Unauthenticated attackers can upload PHP webshells via crafted HTTP POST requests, achieving remote code execution on the server.

File Upload PHP Likeshop

NVD VulDB

CVSS 3.1

7.3

EPSS

91.9%

Threat

5.7

CVE-2024-0352

EPSS 92% 5.7 CVSS 7.3

HIGH POC THREAT Act Now

Likeshop e-commerce platform through version 2.5.7.20210311 contains a critical unrestricted file upload vulnerability in the FileServer::userFormImage function. Unauthenticated attackers can upload PHP webshells via crafted HTTP POST requests, achieving remote code execution on the server.

File Upload PHP Likeshop

NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy