41 matches found
EUVD-2013-7281
Malware in sbrugna...
EUVD-2020-6095
Malware in sbrugna...
EUVD-2020-6096
Malware in sbrugna...
CVE-2013-10066
An unauthenticated arbitrary file upload vulnerability exists in Kordil EDMS v2.2.60rc3. The application exposes an upload endpoint usersadd.php that allows attackers to upload files to the /userpictures/ directory without authentication. This flaw enables remote code execution by uploading a PHP...
CVE-2013-10066
An unauthenticated arbitrary file upload vulnerability exists in Kordil EDMS v2.2.60rc3. The application exposes an upload endpoint usersadd.php that allows attackers to upload files to the /userpictures/ directory without authentication. This flaw enables remote code execution by uploading a PHP...
CVE-2013-10066 Kordil EDMS v2.2.60rc3 Unauthenticated Arbitrary File Upload
An unauthenticated arbitrary file upload vulnerability exists in Kordil EDMS v2.2.60rc3. The application exposes an upload endpoint usersadd.php that allows attackers to upload files to the /userpictures/ directory without authentication. This flaw enables remote code execution by uploading a PHP...
CVE-2013-10066 Kordil EDMS v2.2.60rc3 Unauthenticated Arbitrary File Upload
An unauthenticated arbitrary file upload vulnerability exists in Kordil EDMS v2.2.60rc3. The application exposes an upload endpoint usersadd.php that allows attackers to upload files to the /userpictures/ directory without authentication. This flaw enables remote code execution by uploading a PHP...
CVE-2013-10066
CVE-2013-10066 (Kordil EDMS v2.2.60rc3): An unauthenticated arbitrary file upload vulnerability is exposed via the upload endpoint /users_add.php, allowing files to be uploaded to /userpictures/ and enabling remote code execution by delivering a PHP payload invoked through HTTP. Documents indicat...
PT-2025-31990 · Unknown · Kordil Edms
Name of the Vulnerable Software and Affected Versions: Kordil EDMS version 2.2.60rc3 Description: An unauthenticated arbitrary file upload vulnerability exists in the application. The application exposes an upload endpoint /users add.php that allows attackers to upload files to the /userpictures/...
Kordil EDMS 安全漏洞
Kordil EDMS is an open source electronic document management system from the Turkish company Kordil. The system supports features such as document management and document control. A security vulnerability exists in Kordil EDMS version v2.2.60rc3, which stems from an unvalidated uploaded file type...
CVE-2020-13887
documentsadd.php in Kordil EDMS through 2.2.60rc3 allows Remote Command Execution because .php files can be uploaded to the documents folder...
CVE-2020-13888
Kordil EDMS through 2.2.60rc3 allows stored XSS in usersedit.php, usersmanagementedit.php, and usermanagement.php...
Kordil EDMS Cross-Site Scripting Vulnerability
Kordil EDMS is an open source electronic document management system of the Turkish company Kordil . The system supports features such as document management and document control. A cross-site scripting vulnerability exists in the usersedit.php file, usersmanagementedit.php file, and...
Kordil EDMS Command Execution Vulnerability
Kordil EDMS is a document control and management system. A remote code execution vulnerability exists in documentsadd.php in Kordil EDMS 2.2.60rc3 and earlier versions. The vulnerability stems from a .php file that can be uploaded to the Documents folder. A remote attacker could exploit this...
CVE-2020-13887
documentsadd.php in Kordil EDMS through 2.2.60rc3 allows Remote Command Execution because .php files can be uploaded to the documents folder...
CVE-2020-13887
documentsadd.php in Kordil EDMS through 2.2.60rc3 allows Remote Command Execution because .php files can be uploaded to the documents folder...
Command injection
documentsadd.php in Kordil EDMS through 2.2.60rc3 allows Remote Command Execution because .php files can be uploaded to the documents folder...
CVE-2020-13887
Kordil EDMS is affected by CVE-2020-13887 in versions up to 2.2.60rc3, where documents_add.php allows remote command execution because PHP files can be uploaded to the Documents folder. The vulnerability is described across multiple sources (NVD entry and CNVD/Red Hat/CVE records) as a remote cod...
CVE-2020-13887
documentsadd.php in Kordil EDMS through 2.2.60rc3 allows Remote Command Execution because .php files can be uploaded to the documents folder...
CVE-2020-13888
Kordil EDMS through 2.2.60rc3 allows stored XSS in usersedit.php, usersmanagementedit.php, and usermanagement.php...