blueimp's jQuery 9.22.0 - (Arbitrary) File Upload (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "blueimp's jQuery Arbitrary File Upload", 'Description' = %q This module exploits an arbitrary file upload in the sample PHP upload handler for...

CVE-2018-9208

The CVE-2018-9208 entry corresponds to an Unaithenticated arbitrary file upload vulnerability in the jQuery Picture Cut component (<= v1.1Beta). Connected sources consistently describe that an unauthenticated user can upload arbitrary files via the vulnerable upload path (e.g., upload.php), en...

CVE-2018-9208

Unauthenticated arbitrary file upload vulnerability in jQuery Picture Cut = v1.1Beta...

CVE-2018-9208

Unauthenticated arbitrary file upload vulnerability in jQuery Picture Cut = v1.1Beta...

CVE-2018-9208

Unauthenticated arbitrary file upload vulnerability in jQuery Picture Cut = v1.1Beta...

CVE-2018-9208

Unauthenticated arbitrary file upload vulnerability in jQuery Picture Cut = v1.1Beta...

Design/Logic Flaw

Unauthenticated arbitrary file upload vulnerability in jQuery Picture Cut = v1.1Beta...

jQuery 1.7.1 < 1.9.0 Cross-Site Scripting

According to its self-reported version number, jQuery is at least 1.7.1 and prior to 1.9.0. Therefore, it may be affected by a cross-site scripting vulnerability due to jQuerystrInput. Note that the scanner has not tested for these issues but has instead relied only on the application's...

jQuery 1.4.0 < 1.12.0 Cross-Site Scripting

According to its self-reported version number, jQuery is at least 1.4.0 and prior to 1.12.0 or at least 1.12.4 and prior to 3.0.0-beta1. Therefore, it may be affected by a cross-site scripting vulnerability due to cross-domain ajax request performed without the dataType. Note that the scanner has...

jQuery < 1.6.3 Cross-Site Scripting

According to its self-reported version number, jQuery is prior to 1.6.3. Therefore, it may be affected by a cross-site scripting vulnerability due to location.hash function. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported versio...

blueimp jQuery Arbitrary File Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "blueimp's jQuery Arbitrary File Upload", 'Description' = %q This module exploits an arbitrary file upload in the sample PHP upload handler for...

jQuery 1.4.2 < 1.6.2 Cross-Site Scripting

According to its self-reported version number, jQuery is at least 1.4.2 and prior to 1.6.2. Therefore, it may be affected by a cross-site scripting vulnerability due to using the text function inside the after function. Note that the scanner has not tested for these issues but has instead relied...

blueimp jQuery Arbitrary File Upload Exploit

This Metasploit module exploits an arbitrary file upload in the sample PHP upload handler for blueimp's jQuery File Upload widget in versions 9.22.0 and below. Due to a default configuration in Apache 2.3.9+, the widget's .htaccess file may be disabled, enabling exploitation of this vulnerability...

jQuery 1.12.4 < 3.0.0 Cross-Site Scripting

According to its self-reported version number, jQuery is at least 1.4.0 and prior to 1.12.0 or at least 1.12.4 and prior to 3.0.0-beta1. Therefore, it may be affected by a cross-site scripting vulnerability due to cross-domain ajax request performed without the dataType. Note that the scanner has...

jQuery 3.0.0-rc.1 Denial of Service

According to its self-reported version number, jQuery is 3.0.0-rc.1. Therefore, it may be affected by a denial of service vulnerability due to an infinite recursion on non-lowercase attribute getters. Note that the scanner has not tested for these issues but has instead relied only on the...

Blueimp jQuery-File-Upload < 9.24.1 File Upload Vulnerability - Active Check

Blueimp jQuery-File-Upload is prone to a unauthenticated file upload vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if...

jQuery < 1.9.0 XSS Vulnerability

jQuery is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jquery:jquery"; if...

jQuery < 3.0.0 XSS Vulnerability

jQuery is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:jquery:jquery"; if...

jQuery Detection (HTTP)

HTTP based detection of jQuery. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.141622";...

Blueimp jQuery File Upload Remote Code Execution (CVE-2018-9206)

An arbitrary file upload vulnerability has been reported in Blueimp jQuery File Upload Plugin. The vulnerability is due to a fail to adequately sanitize user-supplied input. Successful exploitation of this vulnerability could result in arbitrary code execution...