VYPR

Openupload

by Openupload

CVEs (2)

  • CVE-2023-36319HigSep 20, 2023
    risk 0.57cvss 8.8epss 0.02

    File Upload vulnerability in Openupload Stable v.0.4.3 allows a remote attacker to execute arbitrary code via the action parameter of the compress-inc.php file.

  • CVE-2020-11712MedApr 12, 2020
    risk 0.40cvss 6.1epss 0.01

    Open Upload through 0.4.3 allows XSS via index.php?action=u and the filename field.