Unrestricted File Upload Vulnerability in Dialogic PowerMedia XMS Administrative Console

CVE-2018-11638 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

Unrestricted Upload of a File with a Dangerous Type in the administrative console in Dialogic PowerMedia XMS through 3.5 allows remote authenticated users to upload malicious code to the web root to gain code execution.

Learn more about our Web App Pen Testing.