Latest Security News about umbraco cms 8 5 3

Umbraco CMS 8.5.3 allows an authenticated file upload

  Overview : Umbraco CMS 8.5.3 allows an authenticated file upload (and consequently Remote Code Execution) via the Install Package functionality. Umbraco CMS 8.5.3 - Authenticated FileUpload PoC Attack Type: File Upload Product Version: 8.5.3 OWASP Category: Unrestricted File Upload Solution: Add package integrity mechanisms and/or file extension whitelist/blacklist filtering Summary: Umbraco CMS 8.5.3 allows [...]