Critical severity9.8NVD Advisory· Published Sep 29, 2022· Updated Jun 17, 2026
CVE-2021-45790
CVE-2021-45790
Description
An arbitrary file upload vulnerability was found in Metersphere v1.15.4. Unauthenticated users can upload any file to arbitrary directory, where attackers can write a cron job to execute commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Metersphere/Meterspheredescription
- Range: <=1.15.4
Patches
Vulnerability mechanics
References
1- github.com/metersphere/metersphere/issues/8653nvdExploitIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.