File upload vulnerability in HorizontCMS before 1.0.0-beta.3 via uploading .htaccess and *.hello files using Media Files upload functionality. Filter bypass allows RCE
Reporter | Title | Published | Views | Family All 13 |
---|---|---|---|---|
Cvelist | CVE-2021-28428 | 5 Apr 202215:37 | – | cvelist |
Cvelist | CVE-2020-27387 | 5 Nov 202001:18 | – | cvelist |
CVE | CVE-2021-28428 | 5 Apr 202216:15 | – | cve |
CVE | CVE-2020-27387 | 5 Nov 202002:15 | – | cve |
OSV | CVE-2021-28428 | 5 Apr 202216:15 | – | osv |
OSV | CVE-2020-27387 | 5 Nov 202002:15 | – | osv |
Prion | Unrestricted file upload | 5 Apr 202216:15 | – | prion |
Prion | Unrestricted file upload | 5 Nov 202002:15 | – | prion |
NVD | CVE-2020-27387 | 5 Nov 202002:15 | – | nvd |
Packet Storm | HorizontCMS 1.0.0-beta Shell Upload | 13 Nov 202000:00 | – | packetstorm |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo