← Back

Freelancy

freelancy

Vendor: Vaaip • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-5505
1Vaaip
1Freelancy
Nov 21, 2024
Jan 14, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Freelancy v1.0.0 allows remote command execution via the "file":"data:application/x-php;base64 substring (in conjunction with "type":"application/x-php"} to the /api/files/ URI.