19 matches found
MindsDB 访问控制错误漏洞
MindsDB is a joint query engine developed by MindsDB Corporation, designed specifically for AI agents and large language models. It can handle questions related to PB-level enterprise data. MindsDB versions 26.01 and earlier contained a access control vulnerability. This vulnerability stemmed fro...
maccms_pro 访问控制错误漏洞
Maccmspro is a content management system developed by Maccmspro’s individual developers. Versions of Maccmspro prior to 2022.1.3 had an access control vulnerability. This vulnerability stemmed from an unlimited upload issue in the install function of the file/admi.php/admin/addon/add.html within...
EFM iptime A6004MX 代码问题漏洞
EFM iptime A6004MX is a wireless router produced by the South Korean company EFM. The EFM iptime A6004MX version 14.18.2 has a code vulnerability. This vulnerability stems from an unlimited upload function in the commitvpnclifile Upload function located in the cgi/timepro.cgi file, which could le...
WordPress plugin Real Homes CRM code issue vulnerability
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
CampCodes School File Management System 代码问题漏洞
CampCodes School File Management System is a school file management system from CampCodes Philippines. A code issue vulnerability exists in CampCodes School File Management System version 1.0, which stems from an incorrect manipulation of the parameter File in the file /savefile.php resulting in ...
CVE-2025-41347
Unlimited upload vulnerability for dangerous file types in WinPlus v24.11.27 from Informática del Este. This vulnerability allows an attacker to upload a 'webshell' by sending a POST request to '/WinplusPortal/ws/sWinplus.svc/json/uploadfile'...
Code-Projects Voting System 代码问题漏洞
Code-Projects Voting System is a Code-Projects open source election system. A code issue vulnerability exists in Code-Projects Voting System version 1.0, which stems from an unlimited upload due to the parameter photo in file /admin/candidatesadd.php...
CampCodes Sales and Inventory System 代码问题漏洞
CampCodes Sales and Inventory System is a sales and inventory system from CampCodes, Inc. A code issue vulnerability exists in version 1.0 of the Campcodes Sales and Inventory System, which stems from an incorrect manipulation of the parameter image in the file /pages/productupdate.php resulting ...
Car Rental Project Unlimited Upload Vulnerability
Car Rental Project is a car rental program. Car Rental Project has an unlimited upload vulnerability that stems from the lack of valid validation of uploaded files by the parameters img1/img2/img3/img4/img5 in the file /admin/post-avehical.php. No details of the vulnerability are available at thi...
itsourcecode Laravel Property Management System 代码问题漏洞
Laravel Property Management System is itsourcecode open source property management system. A code issue exists in version 1.0 of itsourcecode Laravel Property Management System due to an unlimited upload vulnerability in the file parameter of the PropertiesController.php page...
WordPress plugin WP-Lister Lite for eBay 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue...
WordPress Plugin Avada 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...
WordPress Plugin File Uploader 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code issue vulnerability exists in...
WordPress Plugin Theme Editor 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code issue vulnerability exists in...
WordPress Plugin Manager for Icomoon 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...
PT-2023-7204 · Nessus · Nessus
Name of the Vulnerable Software and Affected Versions: Nessus affected versions not specified Description: The issue is related to an arbitrary file write vulnerability. An authenticated, remote attacker with administrator privileges on the Nessus application could alter Nessus Rules variables to...
OpenNebula 代码问题漏洞
OpenNebula is an OpenNebula open source cloud computing platform for managing heterogeneous distributed data center infrastructures. A security vulnerability exists in OpenNebula that stems from the presence of an unlimited upload of dangerous types of files vulnerability that allows file content...
PT-2022-4596 · Casdoor · Casdoor
Name of the Vulnerable Software and Affected Versions: Casdoor affected versions not specified Description: The issue is related to unlimited upload of dangerous file types. Exploitation of this issue may allow a remote attacker to upload and execute arbitrary files in the target system...
zzcms front Desk unlimited Upload File getshell
No description provided by source...