VYPR

npm package

angular-base64-upload

pkg:npm/angular-base64-upload

Vulnerabilities (1)

  • CVE-2024-42640CriOct 11, 2024
    affected < 0.1.21fixed 0.1.21

    angular-base64-upload prior to v0.1.21 is vulnerable to unauthenticated remote code execution via demo/server.php. Exploiting this vulnerability allows an attacker to upload arbitrary content to the server, which can subsequently be accessed through demo/uploads. This leads to th