CVE-2020-10934

HIGH

Acyba AcyMailing <6.9.2 - File Upload Vulnerability

Title source: llm
STIX 2.1

Description

Acyba AcyMailing before 6.9.2 mishandles file uploads by admins.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN56890693/index.html

Scores

CVSS v3 7.2
EPSS 0.0054
EPSS Percentile 67.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-434
Status published
Products (1)
acyba/acymailing < 6.9.2
Published Mar 24, 2020
Tracked Since Feb 18, 2026