70 matches found
Design/Logic Flaw
Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload...
CVE-2020-28871
Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload...
Monitorr Code Issue Vulnerability
A code issue vulnerability exists in Monitorr that arises from improper design or implementation during code development of a network system or product...
PT-2021-11587 · Monitorr · Monitorr
Name of the Vulnerable Software and Affected Versions: Monitorr version 1.7.6m Description: The issue allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload in the upload.php file. This enables remote code execution, posing a significant risk...
CVE-2020-28871
Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload. Recent assessments: noraj at June 22, 2021 4:56pm UTC reported: The uploaded file must have an image magic byte eg. GIF in order to match...
CVE-2020-28871
Monitorr 1.7.6m (and 1.7.7d and below) is affected by an unauthenticated remote code execution due to an insecure file upload via upload.php. An attacker can upload a crafted PHP file to achieve RCE on the server; exploitation is discussed in public advisories and exploit references. Affected pro...
Monitorr 1.7.6m Remote Code Execution
!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Remote Code Execution Unauthenticated Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...
Monitorr 1.7.6m Authorization Bypass
!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Authorization Bypass Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...
Monitorr 1.7.6m - Remote Code Execution (Unauthenticated)
!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Remote Code Execution Unauthenticated Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...
Monitorr 1.7.6m - Authorization Bypass
!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Authorization Bypass Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...