Home

Description

An issue in Aetopia Digital Asset Management DAM v.1.0.0 allows a remote attacker to execute arbitrary code via the name and description parameter of the Add/Update Project function

PUBLISHED Reserved 2026-04-06 | Published 2026-07-14 | Updated 2026-07-14 | Assigner mitre

References

eslam3kl.gitbook.io

www.aetopia.com/solutions/industry/enterprise-dam

eslam3kl.gitbook.io/...ia-dam-server-side-template-injection

cve.org (CVE-2026-38450)

nvd.nist.gov (CVE-2026-38450)

Download JSON