Symfonia Ready_ Unrestricted File Upload Vulnerability Leading to Remote Code Execution

Vulnerability

A vulnerability in the Symfonia Ready_ application allows users to upload files of any type and extension without restriction. This unrestricted file upload feature can lead to remote code execution if the server is misconfigured. Such a misconfiguration was common by default when the application was installed between 2021 and 2022.

Impact

Exploitation of this vulnerability could result in remote code execution on the server where the application is hosted.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.0

remediation

0.0

relevance

0.0

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.0

remediation

0.0

relevance

0.0

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Symfonia Ready_ Unrestricted File Upload Vulnerability Leading to Remote Code Execution

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating