Lucene search
PRIOn knowledge basePRION:CVE-2022-40777HistoryOct 11, 2022 - 11:15 p.m.
Design/Logic Flaw
2022-10-1123:15:00
PRIOn knowledge base
www.prio-n.com
14
interspire email marketer
arbitrary file upload
surveys submit
incomplete fix
cve-2018-19550
Interspire Email Marketer through 6.5.0 allows arbitrary file upload via a surveys_submit.php “create survey and submit survey” operation, which can cause a .php file to be accessible under a /admin/temp/surveys/ URI. NOTE: this issue exists because of an incomplete fix for CVE-2018-19550.
| CPE | Name | Operator | Version |
|---|---|---|---|
| email_marketer | le | 6.5.0 |
Related
cve
cve
CVE-2022-40777
2022-10-11 23:15:10
CVE-2018-19550
2018-11-26 07:29:00
nvd
nvd
CVE-2022-40777
2022-10-11 23:15:10
CVE-2018-19550
2018-11-26 07:29:00
cvelist
cvelist
CVE-2022-40777
2022-10-11 00:00:00
CVE-2018-19550
2018-11-26 07:00:00
exploitpack
exploitpack
Interspire Email Marketer 6.20 - surveys_submit.php Remote Code Execution
2019-05-17 00:00:00
zdt
zdt
Interspire Email Marketer 6.20 - Remote Code Execution Exploit
2019-05-17 00:00:00
packetstorm
packetstorm
Interspire Email Marketer 6.20 Remote Code Execution
2019-05-23 00:00:00
prion
prion
Default credentials
2018-11-26 07:29:00
checkpoint_advisories
checkpoint_advisories
Interspire Email Marketer Remote Code Execution (CVE-2018-19550)
2020-03-16 00:00:00
exploitdb
exploitdb