cb
cvebase
.
~
/
products
/
vaaip
/
freelancy
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
vaaip
/
Vaaip Freelancy
Vaaip Freelancy vulnerabilities
1 known vulnerability affecting
vaaip/freelancy
.
Track
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2020-5505
P2
CRITICAL
CVSS 9.8
v1.0.0
2020-01-14
CVE-2020-5505 [CRITICAL] CWE-78 CVE-2020-5505: Freelancy v1.0.0 allows remote command execution via the "file":"data:application/x-php;base64 subst Freelancy v1.0.0 allows remote command execution via the "file":"data:application/x-php;base64 substring (in conjunction with "type":"application/x-php"} to the /api/files/ URI.
nvd
Vaaip Freelancy vulnerabilities | cvebase