CVE-2022-32167

Posted on by admin

CVE-2022-32167

Cloudreve versions v1.0.0 through v3.5.3 are vulnerable to Stored Cross-Site Scripting (XSS), via the file upload functionality. A low privileged user will be able to share a file with an admin user, which could lead to privilege escalation.

Source: CVE-2022-32167

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다