CVE-2021-45887
CRITICALPONTON X/P Messenger - Path Traversal and Remote Code Execution via ZIP Upload in SchemaSetUpload
Title source: llmDescription
An issue was discovered in PONTON X/P Messenger before 3.11.2. Due to path traversal in private/SchemaSetUpload.do for uploaded ZIP files, an executable script can be uploaded by web application administrators, giving the attacker remote code execution on the underlying server via an imgs/*.jsp URI.
References (2)
Core 2
Core References
Product, Vendor Advisory x_refsource_misc
https://www.ponton.de/products/xpmessenger/
Exploit, Third Party Advisory x_refsource_misc
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2021-077.txt
Scores
CVSS v3
9.8
EPSS
0.0325
EPSS Percentile
86.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-22
Status
published
Products (2)
ponton/x\/p_messenger
3.8.0
ponton/x\/p_messenger
3.10.0
Published
Mar 13, 2022
Tracked Since
Feb 18, 2026