Lucene search

CVE-2014-0342

🗓️ 15 Apr 2014 10:11:55Reported by certccType

cve🔗 web.nvd.nist.gov👁 36 Views🌐 WEB

Unrestricted file upload vuln. in PivotX before 2.3.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
seebug.org	PivotX 'fileupload.php'任意文件上传漏洞	16 Apr 201400:00	–	seebug
Prion	Unrestricted file upload	15 Apr 201410:55	–	prion
NVD	CVE-2014-0342	15 Apr 201410:55	–	nvd
Cvelist	CVE-2014-0342	15 Apr 201410:00	–	cvelist
CERT	PivotX 2.3.8 contains multiple vulnerabilities	11 Apr 201400:00	–	cert

Nvd

Node

pivotx pivotxRange≤2.3.8

pivotx pivotxMatch2.1.0

pivotx pivotxMatch2.1.1

pivotx pivotxMatch2.1.2

pivotx pivotxMatch2.2.0

pivotx pivotxMatch2.2.0b1

pivotx pivotxMatch2.2.0b2

pivotx pivotxMatch2.2.0rc

pivotx pivotxMatch2.2.1

pivotx pivotxMatch2.2.2

pivotx pivotxMatch2.2.3

pivotx pivotxMatch2.2.5

pivotx pivotxMatch2.3.0

pivotx pivotxMatch2.3.2

pivotx pivotxMatch2.3.3

pivotx pivotxMatch2.3.5

pivotx pivotxMatch2.3.6

pivotx pivotxMatch2.3.7

Source	Link
kb	www.kb.cert.org/vuls/id/901156
sourceforge	www.sourceforge.net/p/pivot-weblog/code/4347/
pivotx	www.pivotx.net/page/security
blog	www.blog.pivotx.net/archive/2014/03/03/pivotx-239-released

Parameter	Position	Path	Description	CWE
.php	binary	/fileupload.php	Unrestricted file upload vulnerability allowing remote execution of arbitrary PHP code.	CWE-20, CWE-73
.php#	binary	/fileupload.php	Unrestricted file upload vulnerability allowing remote execution of arbitrary PHP code.	CWE-20, CWE-73

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Apr 2014 10:55Current

7.6High risk

Vulners AI Score7.6

CVSS27.5

EPSS0.00562