Lucene search

K

MitreCVELIST:CVE-2012-5893

HistoryNov 17, 2012 - 9:00 p.m.

CVE-2012-5893

2012-11-1721:00:00

mitre

www.cve.org

7.7 High

AI Score

Confidence

Low

0.025 Low

EPSS

Percentile

90.2%

Unrestricted file upload vulnerability in hava_upload.php in Havalite CMS 1.1.0 and earlier allows remote attackers to execute arbitrary code by uploading a file with a .php;.gif extension, then accessing it via a direct request to the file in tmp/files/.

References

osvdb.org/80768

packetstormsecurity.org/files/111358/Havalite-CMS-Shell-Upload-SQL-Injection-Disclosure.html

secunia.com/advisories/48646

exchange.xforce.ibmcloud.com/vulnerabilities/74486

7.7 High

AI Score

Confidence

Low

0.025 Low

EPSS

Percentile

90.2%

Related for CVELIST:CVE-2012-5893

cve1 nvd1 prion1 packetstorm1