Vulnerability Details CVE-2021-45808
jpress v4.2.0 allows users to register an account by default. With the account, user can upload arbitrary files to the server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.016
EPSS Ranking 73.6%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
Products affected by CVE-2021-45808
-
cpe:2.3:a:jpress:jpress:4.2.0