An arbitrary file write vulnerability in Express-FileUpload v1.3.1 allows attackers to upload multiple files with the same name, causing an overwrite of files in the web application server.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-04-12T16:29:01
Updated: 2024-08-03T05:25:32.699Z
Reserved: 2022-03-21T00:00:00
Link: CVE-2022-27261
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-04-12T17:15:09.973
Modified: 2023-10-18T16:03:27.460
Link: CVE-2022-27261
Redhat
No data.