CVE-2021-4080

描述

crater is vulnerable to Unrestricted Upload of File with Dangerous Type

受影響套件(1)

• Packagist/bytefury/craterfrom 0, < 6.0.0

CVSS 分數

參考連結(4)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2021-4080
• PATCHhttps://github.com/crater-invoice/crater
• WEBhttps://github.com/crater-invoice/crater/commit/cdc913d16cf624aee852bc9163a7c6ffc8d1da9d
• WEBhttps://huntr.dev/bounties/d7453360-baca-4e56-985f-481275fa38db