Security Advisory
CVE-2021-36461
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An Arbitrary File Upload vulnerability exists in Microweber 1.1.3 that allows attackers to getshell via the Settings Upload Picture section by uploading pictures with malicious code, user.ini.