Sandline Centraleyezer (On Premises) allows unrestricted File Upload with a dangerous type, because the feature of adding ".jpg" to any uploaded filename is not enforced on the server side.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-11-18T18:16:03

Updated: 2024-08-04T23:17:39.455Z

Reserved: 2019-05-21T00:00:00

Link: CVE-2019-12271

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-11-18T19:15:12.653

Modified: 2024-11-21T04:22:32.203

Link: CVE-2019-12271

cve-icon Redhat

No data.