cve/CVE-2022-29851.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 10:17:57 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

756 B

Raw Permalink Blame History

CVE-2022-29851

Description

documentconverter in OX App Suite through 7.10.6, in a non-default configuration with ghostscript, allows OS Command Injection because file conversion may occur for an EPS document that is disguised as a PDF document.

POC

Reference

https://packetstormsecurity.com/files/168242/OX-App-Suite-Cross-Site-Scripting-Command-Injection.html

Github

No PoCs found on GitHub currently.

756 B Raw Permalink Blame History

CVE-2022-29851

Description

POC

Reference

Github

756 B

Raw Permalink Blame History