1 results (0.001 seconds)

CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0

Insufficient verification of uploaded files allows attackers with webui administrators privileges to perform arbitrary code execution by uploading a new webui theme. Verificación insuficiente de archivos cargados permite a atacantes con privilegios de administradores de webui realizar ejecución de código arbitrario cargando un nuevo tema webui. • http://www.securityfocus.com/bid/96159 https://fortiguard.com/advisory/FG-IR-16-080 • CWE-264: Permissions, Privileges, and Access Controls •