CVE-2023-50090

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
03/01/2024
Last modified:
03/06/2025

Description

Arbitrary File Write vulnerability in the saveReportFile method of ureport2 2.2.9 and before allows attackers to write arbitrary files and run arbitrary commands via crafted POST request.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:ureport2_project:ureport2:*:*:*:*:*:*:*:* 2.2.9 (including)