CVE-2021-27513

Published February 22nd, 2021

View on NVD ↗

CVSS v3

8.8

HIGH

CVSS v2

6.5

MEDIUM

Affected

PROJECT

Description

The module admin_ITSM in EyesOfNetwork 5.3-10 allows remote authenticated users to upload arbitrary .xml.php files because it relies on "le filtre userside."

EyesOfNetworkCommunity/eonweb

EyesOfNetwork web interface

GitHub