ahajnik

1 exploit Active since Aug 2022
CVE-2022-34919 NOMISEC CRITICAL WRITEUP
Zengenti Contensis < 15.2.1.79 - Unauthenticated Remote Code Execution via File Upload Wizard
The file upload wizard in Zengenti Contensis Classic before 15.2.1.79 does not correctly check that a user has authenticated. By uploading a crafted aspx file, it is possible to execute arbitrary commands.
CVSS 9.8