VYPR

Webiness Inventory

by Webiness PHP Framework

CVEs (1)

  • CVE-2019-8404MedMay 14, 2019
    risk 0.46cvss 6.5epss 0.08

    An issue was discovered in Webiness Inventory 2.3. The ProductModel component allows Arbitrary File Upload via a crafted product image during the creation of a new product. Consequently, an attacker can steal information from the site with the help of an installed executable…