Lucene search

K

PRIOn knowledge basePRION:CVE-2012-5893

HistoryNov 17, 2012 - 9:55 p.m.

Unrestricted file upload

2012-11-1721:55:00

PRIOn knowledge base

www.prio-n.com

1

8.2 High

AI Score

Confidence

Low

0.025 Low

EPSS

Percentile

90.2%

Unrestricted file upload vulnerability in hava_upload.php in Havalite CMS 1.1.0 and earlier allows remote attackers to execute arbitrary code by uploading a file with a .php;.gif extension, then accessing it via a direct request to the file in tmp/files/.

CPENameOperatorVersion
cmsle1.1.0

References

osvdb.org/80768

packetstormsecurity.org/files/111358/Havalite-CMS-Shell-Upload-SQL-Injection-Disclosure.html

secunia.com/advisories/48646

exchange.xforce.ibmcloud.com/vulnerabilities/74486

8.2 High

AI Score

Confidence

Low

0.025 Low

EPSS

Percentile

90.2%

Related for PRION:CVE-2012-5893

cve1 cvelist1 nvd1 packetstorm1