Security Advisory

CVE-2021-28294

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-03-16 19:54:20

Last updated 2024-08-03 21:40:13

Assigner mitre

State PUBLISHED

Description

Online Ordering System 1.0 is vulnerable to arbitrary file upload through /onlineordering/GPST/store/initiateorder.php, which may lead to remote code execution (RCE).

← Browse all CVEs View on cve.org ↗