Max CVSS | 6.5 | Min CVSS | 6.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2020-7246 | 6.5 |
A remote code execution (RCE) vulnerability exists in qdPM 9.1 and earlier. An attacker can upload a malicious PHP code file via the profile photo functionality, by leveraging a path traversal vulnerability in the users['photop_preview'] delete photo
|
10-11-2022 - 04:31 | 21-01-2020 - 14:15 |