Arbitrary File Download and Execution Vulnerability in DEXTUploadX5

Arbitrary File Download and Execution Vulnerability in DEXTUploadX5

CVE-2018-5203 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

DEXTUploadX5 version Between 1.0.0.0 and 2.2.0.0 contains a vulnerability that could allow remote attacker to download and execute remote arbitrary file by setting the arguments to the activex method. this can be leveraged for code execution.

Learn more about our Web Application Penetration Testing UK.