Lucene search
MitreCVELIST:CVE-2016-1713HistoryApr 14, 2017 - 6:00 p.m.
CVE-2016-1713
2017-04-1418:00:00
mitre
raw.githubusercontent.com
2
Unrestricted file upload vulnerability in the Settings_Vtiger_CompanyDetailsSave_Action class in modules/Settings/Vtiger/actions/CompanyDetailsSave.php in Vtiger CRM 6.4.0 allows remote authenticated users to execute arbitrary code by uploading a crafted image file with an executable extension, then accessing it via a direct request to the file in test/logo/. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-6000.
Related
packetstorm
packetstorm
Vtiger CRM 6.3.0 Authenticated Logo Upload Remote Command Execution
2018-07-30 00:00:00
Vtiger CRM 6.3 Remote Code Execution
2015-09-29 00:00:00
dsquare
dsquare
vTiger File Upload
2018-02-26 00:00:00
prion
prion
Unrestricted file upload
2017-04-14 18:59:00
Unrestricted file upload
2020-02-06 14:15:00
zdt
zdt
Vtiger CRM 6.3.0 Authenticated Logo Upload Remote Command Execution Exploit
2018-07-31 00:00:00
Vtiger CRM 6.3.0 Authenticated Remote Code Execution
2015-09-28 00:00:00
Vtiger CRM 6.3.0 - Authenticated Arbitrary File Upload Exploit
2018-03-31 00:00:00
cvelist
cvelist
CVE-2015-6000
2020-02-06 13:55:09
securityvulns
securityvulns
cve
cve
CVE-2015-6000
2020-02-06 14:15:00
CVE-2016-1713
2017-04-14 18:59:00
exploitpack
exploitpack
vTiger CRM 6.3.0 - (Authenticated) Remote Code Execution
2015-09-28 00:00:00
Symantec Advanced Secure Gateway (ASG) ProxySG - Unrestricted File Upload
2019-09-16 00:00:00
exploitdb
exploitdb
vTiger CRM 6.3.0 - (Authenticated) Remote Code Execution
2015-09-28 00:00:00
Symantec Advanced Secure Gateway (ASG) / ProxySG - Unrestricted File Upload
2019-09-16 00:00:00
openvas
openvas
VTiger CRM Privilege Escalation and Unrestricted File Upload Vulnerability
2016-08-05 00:00:00