Arbitrary Code Execution Vulnerability in Outdoorbits Little Backup Box

Arbitrary Code Execution Vulnerability in Outdoorbits Little Backup Box

CVE-2023-52262 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

outdoorbits little-backup-box (aka Little Backup Box) before f39f91c allows remote attackers to execute arbitrary code because the PHP extract function is used for untrusted input.

Learn more about our Web Application Penetration Testing UK.