Lucene search
K

16 matches found

Nuclei
Nuclei
added 2026/06/16 7:13 a.m.106 views

FortiLogger 4.4.2.2 - Arbitrary File Upload

FortiLogger 4.4.2.2 is affected by arbitrary file upload issues. Attackers can send a "Content-Type: image/png" header to Config/SaveUploadedHotspotLogoFile and then Assets/temp/hotspot/img/logohotspot.asp. id: CVE-2021-3378 info: name: FortiLogger 4.4.2.2 - Arbitrary File Upload author:...

9.8CVSS8.5AI score0.97512EPSS
Exploits8References5
RedhatCVE
RedhatCVE
added 2025/05/22 9:28 p.m.9 views

CVE-2021-3378

FortiLogger 4.4.2.2 is affected by Arbitrary File Upload by sending a "Content-Type: image/png" header to Config/SaveUploadedHotspotLogoFile and then visiting Assets/temp/hotspot/img/logohotspot.asp...

9.8CVSS6.7AI score0.97512EPSS
Exploits8References1
Check Point Advisories
Check Point Advisories
added 2021/04/05 12:0 a.m.7 views

FortiLogger Arbitrary File Upload (CVE-2021-3378)

An arbitrary file upload vulnerability exists in FortiLogger. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5AI score0.97512EPSS
Exploits8
Rapid7 Blog
Rapid7 Blog
added 2021/03/26 5:36 p.m.588 views

Metasploit Wrap-Up

ProxyLogon More Microsoft news this week! Firstly, a big thank you to community contributors GreyOrder, Orange Tsai, and mekhalleh RAMELLA Sébastien, who added three new modules that allow an attacker to bypass authentication and impersonate an administrative user CVE-2021-26855 on vulnerable...

7.5CVSS10AI score0.99999EPSS
Exploits105
Metasploit
Metasploit
added 2021/03/25 5:42 p.m.98 views

FortiLogger Arbitrary File Upload Exploit

This module exploits an unauthenticated arbitrary file upload via insecure POST request. It has been tested on versions use exploit/windows/http/fortiloggerarbitraryfileupload msf exploitfortiloggerarbitraryfileupload show targets ...targets... msf exploitfortiloggerarbitraryfileupload set TARGET...

9.8CVSS9.4AI score0.97512EPSS
Exploits8
Packet Storm
Packet Storm
added 2021/03/25 12:0 a.m.893 views

FortiLogger Arbitrary File Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FortiLogger Arbitrary File Upload Exploit', 'Description' = %q This module exploits an unauthenticated arbitrary file upload via insecure POST...

7.5CVSS0.5AI score0.97512EPSS
Exploits8
0day.today
0day.today
added 2021/03/01 12:0 a.m.115 views

FortiLogger 4.4.2.2 - Unauthenticated Arbitrary File Upload Exploit

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FortiLogger Arbitrary File Upload Exploit', 'Description' = %q This module exploits an unauthenticated arbitrary file upload via insecure POST...

9.8CVSS0.97512EPSS
Exploits8
Packet Storm
Packet Storm
added 2021/03/01 12:0 a.m.463 views

FortiLogger 4.4.2.2 Arbitrary File Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FortiLogger Arbitrary File Upload Exploit', 'Description' = %q This module exploits an unauthenticated arbitrary file upload via insecure POST...

7.5CVSS0.2AI score0.97512EPSS
Exploits8
Exploit DB
Exploit DB
added 2021/03/01 12:0 a.m.706 views

FortiLogger 4.4.2.2 - Unauthenticated Arbitrary File Upload (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'FortiLogger Arbitrary File Upload Exploit', 'Description' = %q This module exploits an unauthenticated arbitrary file upload via insecure POST...

9.8CVSS9.6AI score0.97512EPSS
Exploits8
OSV
OSV
added 2021/02/01 11:15 p.m.2 views

CVE-2021-3378

FortiLogger 4.4.2.2 is affected by Arbitrary File Upload by sending a "Content-Type: image/png" header to Config/SaveUploadedHotspotLogoFile and then visiting Assets/temp/hotspot/img/logohotspot.asp...

9.8CVSS5.8AI score0.97512EPSS
Exploits8References3
NVD
NVD
added 2021/02/01 11:15 p.m.21 views

CVE-2021-3378

FortiLogger 4.4.2.2 is affected by Arbitrary File Upload by sending a "Content-Type: image/png" header to Config/SaveUploadedHotspotLogoFile and then visiting Assets/temp/hotspot/img/logohotspot.asp...

9.8CVSS9.4AI score0.97512EPSS
Exploits8References3
Prion
Prion
added 2021/02/01 11:15 p.m.20 views

Design/Logic Flaw

FortiLogger 4.4.2.2 is affected by Arbitrary File Upload by sending a "Content-Type: image/png" header to Config/SaveUploadedHotspotLogoFile and then visiting Assets/temp/hotspot/img/logohotspot.asp...

7.5CVSS9.3AI score0.97512EPSS
Exploits8References3Affected Software1
Cvelist
Cvelist
added 2021/02/01 10:8 p.m.51 views

CVE-2021-3378

FortiLogger 4.4.2.2 is affected by Arbitrary File Upload by sending a "Content-Type: image/png" header to Config/SaveUploadedHotspotLogoFile and then visiting Assets/temp/hotspot/img/logohotspot.asp...

9.7AI score0.97512EPSS
Exploits8References3
CVE
CVE
added 2021/02/01 10:8 p.m.310 views

CVE-2021-3378

FortiLogger 4.4.2.2 is affected by an Arbitrary File Upload vulnerability. Attackers can trigger it by sending a Content-Type: image/png header to Config/SaveUploadedHotspotLogoFile, then access Assets/temp/hotspot/img/logohotspot.asp. The issue enables unauthenticated arbitrary file upload with ...

9.8CVSS9.2AI score0.97512EPSS
Exploits8References3Affected Software1
CNNVD
CNNVD
added 2021/02/01 12:0 a.m.5 views

RZK Fortilogger Code Issue Vulnerability

RZK Fortilogger is a system from RZK Turkey that provides instant status tracking, logging, searching/filtering, reporting, and hotspotting for the FortiGate firewall on Windows systems. A security vulnerability exists in FortiLogger 4.4.2.2, which originates from being affected by arbitrary file...

9.8CVSS7.4AI score0.97512EPSS
Exploits8References6
GithubExploit
GithubExploit
added 2021/01/30 11:47 p.m.153 views

Exploit for Unrestricted Upload of File with Dangerous Type in Fortilogger

CVE-2021-3378 | FortiLogger - Unauthenticated Arbitrary File...

9.8CVSS9.6AI score0.97512EPSS
Exploits8
Rows per page
Query Builder