COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2021-45807

CVE-2021-45807

Severity
critical
Source
NVD · cve
Published
2022-01-13
CVSS
9.8
Reference
https://nvd.nist.gov/vuln/detail/CVE-2021-45807
⚡ RCE shame 50/100 rce

jpress v4.2.0 is vulnerable to command execution via io.jpress.web.admin._AddonController::doUploadAndInstall.

Players implicated

jpress · vendorjpress · product

Description

jpress v4.2.0 is vulnerable to command execution via io.jpress.web.admin._AddonController::doUploadAndInstall.

Sentiment · trusted sources

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.