Back to search
CVE-2022-27261
Published: Apr 12, 2022
Modified: Aug 3, 2024
PUBLISHED
Description
An arbitrary file write vulnerability in Express-FileUpload v1.3.1 allows attackers to upload multiple files with the same name, causing an overwrite of files in the web application server.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://www.npmjs.com/package/express-fileupload
x_refsource_MISC
https://www.youtube.com/watch?v=3ROHB3ck4tA
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now