Lucene search
K

5 matches found

Circl
Circl
added 2019/02/20 1:59 p.m.8 views

CVE-2018-17936

creationtimestamp| type| source ---|---|--- 2019-02-20 13:59:43+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/nuuo/nuuocmsfu.rb 2025-02-06 03:13:43+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:10:06+00:00| seen|...

9.8CVSS9.4AI score0.15312EPSS
Exploits3References1
Packet Storm
Packet Storm
added 2019/02/20 12:0 a.m.326 views

Nuuo Central Management Server 2.4 Authenticated Arbitrary File Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Nuuo Central Management Server Authenticated Arbitrary File Upload", 'Description' = %q The COMMITCONFIG verb is used by a CMS client to upload a...

7.5CVSS0.1AI score0.15312EPSS
Exploits3
CVE
CVE
added 2018/11/27 9:0 p.m.79 views

CVE-2018-17936

NUUO CMS (Central Management System) All versions up to 3.3 and prior are affected by an authenticated Arbitrary File Upload vulnerability. The COMMITCONFIG FileName parameter accepts directory traversal, allowing an attacker to upload/overwrite configuration files on the CMS Server and potential...

9.8CVSS9.8AI score0.15312EPSS
Exploits3References1Affected Software1
NVD
NVD
added 2018/11/27 8:29 p.m.21 views

CVE-2018-17936

NUUO CMS All versions 3.3 and prior the application allows the upload of arbitrary files that can modify or overwrite configuration files to the server, which could allow remote code execution...

9.8CVSS9.9AI score0.15312EPSS
Exploits3References1
OSV
OSV
added 2018/11/27 8:29 p.m.5 views

CVE-2018-17936

NUUO CMS All versions 3.3 and prior the application allows the upload of arbitrary files that can modify or overwrite configuration files to the server, which could allow remote code execution...

9.8CVSS6.1AI score
Exploits0References1
Rows per page
Query Builder