Lucene search
K

38 matches found

Cvelist
Cvelist
added 2022/02/23 9:11 p.m.21 views

CVE-2022-25104

HorizontCMS v1.0.0-beta.2 was discovered to contain an arbitrary file download vulnerability via the component /admin/file-manager/...

7.8AI score0.01117EPSS
Exploits1References1
CVE
CVE
added 2022/02/23 9:11 p.m.88 views

CVE-2022-25104

CVE-2022-25104 affects HorizontCMS v1.0.0-beta.2, where an arbitrary file download vulnerability exists via the /admin/file-manager/ component. The available sources consistently describe the issue as an arbitrary file download, but do not provide concrete details on the exact root cause, impacte...

7.5CVSS7.6AI score0.01117EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2020/11/17 12:0 a.m.21 views

HorizontCMS File Upload Vulnerability

HorizontCMS is an open source, responsive content management system CMS built on Laravel 6, VueJs 2.6 and Bootstrap 3.4. HorizontCMS 1.0.0-beta is vulnerable to unrestricted file uploads. An attacker can exploit this vulnerability to upload PHP code via zip file and execute PHP files via HTTP GET...

9CVSS1.4AI score0.02498EPSS
Exploits1References1
NVD
NVD
added 2020/11/16 9:15 p.m.15 views

CVE-2020-28693

An unrestricted file upload issue in HorizontCMS 1.0.0-beta allows an authenticated remote attacker to upload PHP code through a zip file by uploading a theme, and executing the PHP file via an HTTP GET request to /themes/...

9CVSS8.7AI score0.02498EPSS
Exploits1References2
OSV
OSV
added 2020/11/16 9:15 p.m.10 views

CVE-2020-28693

An unrestricted file upload issue in HorizontCMS 1.0.0-beta allows an authenticated remote attacker to upload PHP code through a zip file by uploading a theme, and executing the PHP file via an HTTP GET request to /themes/...

8.8CVSS7.3AI score
Exploits0References2
Prion
Prion
added 2020/11/16 9:15 p.m.14 views

Unrestricted file upload

An unrestricted file upload issue in HorizontCMS 1.0.0-beta allows an authenticated remote attacker to upload PHP code through a zip file by uploading a theme, and executing the PHP file via an HTTP GET request to /themes/...

9CVSS8.6AI score0.02498EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/11/16 8:42 p.m.17 views

CVE-2020-28693

An unrestricted file upload issue in HorizontCMS 1.0.0-beta allows an authenticated remote attacker to upload PHP code through a zip file by uploading a theme, and executing the PHP file via an HTTP GET request to /themes/...

8.7AI score0.02498EPSS
Exploits1References2
CVE
CVE
added 2020/11/16 8:42 p.m.45 views

CVE-2020-28693

CVE-2020-28693 concerns HorizontCMS 1.0.0-beta where an authenticated user can upload a ZIP theme containing PHP code, enabling unrestricted file upload. The attacker can subsequently trigger execution by issuing an HTTP GET to /themes/, potentially compromising server-side code. The sources desc...

9CVSS8.7AI score0.02498EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2020/11/16 12:0 a.m.3 views

HorizontCMS Code Injection Vulnerability

HorizontCMS is a customer relationship management web platform for individual developers. A code injection vulnerability exists in the HorizontCMS product, which can be exploited by remote attackers to execute arbitrary PHP code by uploading a PHP payload...

8.8CVSS8.1AI score0.18461EPSS
Exploits4References1
0day.today
0day.today
added 2020/11/14 12:0 a.m.61 views

HorizontCMS 1.0.0-beta Shell Upload Exploit

This Metasploit module exploits an arbitrary file upload vulnerability in HorizontCMS 1.0.0-beta in order to execute arbitrary commands. The module first attempts to authenticate to HorizontCMS. It then tries to upload a malicious PHP file via an HTTP POST request to /admin/file-manager/fileuploa...

8.8CVSS8AI score0.18461EPSS
Exploits4
Metasploit
Metasploit
added 2020/11/13 5:41 p.m.80 views

HorizontCMS Arbitrary PHP File Upload

This module exploits an arbitrary file upload vulnerability in HorizontCMS 1.0.0-beta in order to execute arbitrary commands. The module first attempts to authenticate to HorizontCMS. It then tries to upload a malicious PHP file via an HTTP POST request to /admin/file-manager/fileupload. The serv...

8.8CVSS9.3AI score0.18461EPSS
Exploits4
Packet Storm
Packet Storm
added 2020/11/13 12:0 a.m.525 views

HorizontCMS 1.0.0-beta Shell Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HorizontCMS Arbitrary PHP File Upload', 'Description' = %q This module exploits an arbitrary file upload vulnerability in HorizontCMS 1.0.0-beta ...

6.5CVSS0.2AI score0.18461EPSS
Exploits4
NVD
NVD
added 2020/11/05 2:15 a.m.50 views

CVE-2020-27387

An unrestricted file upload issue in HorizontCMS through 1.0.0-beta allows an authenticated remote attacker with access to the FileManager to upload and execute arbitrary PHP code by uploading a PHP payload, and then using the FileManager's rename function to provide the payload which will receiv...

8.8CVSS9.5AI score0.18461EPSS
Exploits4References4
OSV
OSV
added 2020/11/05 2:15 a.m.27 views

CVE-2020-27387

An unrestricted file upload issue in HorizontCMS through 1.0.0-beta allows an authenticated remote attacker with access to the FileManager to upload and execute arbitrary PHP code by uploading a PHP payload, and then using the FileManager's rename function to provide the payload which will receiv...

8.8CVSS7.5AI score
Exploits0References4
Prion
Prion
added 2020/11/05 2:15 a.m.29 views

Unrestricted file upload

An unrestricted file upload issue in HorizontCMS through 1.0.0-beta allows an authenticated remote attacker with access to the FileManager to upload and execute arbitrary PHP code by uploading a PHP payload, and then using the FileManager's rename function to provide the payload which will receiv...

6.5CVSS9.5AI score0.18461EPSS
Exploits4References4Affected Software1
Cvelist
Cvelist
added 2020/11/05 1:18 a.m.56 views

CVE-2020-27387

An unrestricted file upload issue in HorizontCMS through 1.0.0-beta allows an authenticated remote attacker with access to the FileManager to upload and execute arbitrary PHP code by uploading a PHP payload, and then using the FileManager's rename function to provide the payload which will receiv...

9.2AI score0.18461EPSS
Exploits4References4
CVE
CVE
added 2020/11/05 1:18 a.m.89 views

CVE-2020-27387

HorizontCMS 1.0.0-beta is affected by an unrestricted PHP file upload vulnerability in the FileManager. An authenticated user can upload a PHP payload via /admin/file-manager/fileupload, get it renamed to a random name with a .php extension, and then trigger execution by accessing /storage/. This...

8.8CVSS9.3AI score0.18461EPSS
In wildExploits4References4Affected Software1
Positive Technologies
Positive Technologies
added 2020/11/05 12:0 a.m.4 views

PT-2020-16680 · Horizontcms · Horizontcms

Name of the Vulnerable Software and Affected Versions: HorizontCMS versions prior to 1.0.0-beta patched, but version number remains the same Description: The issue allows an authenticated remote attacker with access to the FileManager to upload and execute arbitrary PHP code. This is achieved by...

8.8CVSS8.6AI score0.18461EPSS
Exploits4References11
Rows per page
Query Builder