Portable UPnP SDK (aka libupnp) prior to 1.6.21 allows remote malicious users to write to arbitrary files in the webroot via a POST request without a registered handler.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
debian debian linux 8.0 |
||
libupnp project libupnp |