CVE-2019-18952

🗓️ 13 Nov 2019 00:00:00Reported by AttackerKBType

SibSoft Xfilesharing 2.5.1 allows arbitrary file upload via cgi-bin/up.cgi, leading to remote code execution via .html fil

Reporter	Title	Published	Views	Family All 12
Exploit DB	Xfilesharing 2.5.1 - Arbitrary File Upload	14 Nov 201900:00	–	exploitdb
0day.today	Xfilesharing 2.5.1 - Arbitrary File Upload Vulnerability	14 Nov 201900:00	–	zdt
Prion	Design/Logic Flaw	13 Nov 201923:15	–	prion
Prion	Directory traversal	13 Nov 201923:15	–	prion
CVE	CVE-2019-18952	13 Nov 201923:15	–	cve
CVE	CVE-2019-18951	13 Nov 201923:15	–	cve
exploitpack	Xfilesharing 2.5.1 - Arbitrary File Upload	14 Nov 201900:00	–	exploitpack
Packet Storm	Xfilesharing 2.5.1 Local File Inclusion / Shell Upload	14 Nov 201900:00	–	packetstorm
NVD	CVE-2019-18952	13 Nov 201923:15	–	nvd
NVD	CVE-2019-18951	13 Nov 201923:15	–	nvd

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
gist	www.gist.github.com/pak0s/af9f640170aed335fdf6d110d468dbce
packetstormsecurity	www.packetstormsecurity.com/files/155324/Xfilesharing-2.5.1-Local-File-Inclusion-Shell-Upload.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Nov 2019 00:00Current

4.3Medium risk

Vulners AI Score4.3

CVSS27.5

CVSS39.8

EPSS0.14678