uvdesk/community-skeleton is vulnerable to Remote Code Execution. The vulnerability exists because the library does not properly validate uploaded profile pictures, allowing an attacker to upload and execute a malicious file.
CPE | Name | Operator | Version |
---|---|---|---|
uvdesk/community-skeleton | le | 2.0.x-dev | |
uvdesk/community-skeleton | le | 2.0.x-dev |