First published: Sat May 20 2023(Updated: )
Unrestricted Upload of File with Dangerous Type vulnerability in "Rental Module" developed by third-party for Ideasoft's E-commerce Platform allows Command Injection, Using Malicious Files, Upload a Web Shell to a Web Server.This issue affects Rental Module: before 23.05.15.
Credit: cve@usom.gov.tr cve@usom.gov.tr
Affected Software | Affected Version | How to fix |
---|---|---|
Rental Module Project Rental Module | <23.05.15 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2023-2712.
CVE-2023-2712 has a severity level of critical.
The affected software for CVE-2023-2712 is the Rental Module developed by third-party for Ideasoft's E-commerce Platform.
CVE-2023-2712 is an Unrestricted Upload of File with Dangerous Type vulnerability.
To fix CVE-2023-2712, update the Rental Module to version 23.05.15 or later.