Lucene search
K

44 matches found

OSV
OSV
added 2019/06/24 7:15 p.m.1 views

CVE-2019-10271

An issue was discovered in the Ultimate Member plugin 2.39 for WordPress. It allows unauthorized profile and cover picture modification. It is possible to modify the profile and cover picture of any user once one is connected. One can also modify the profiles and cover pictures of privileged user...

4.3CVSS5.8AI score0.00861EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2019/01/01 12:0 a.m.39 views

Voyager 1.1.3 Shell Upload

Exploit Title: Voyager 1.1.3 - Arbitrary File Upload Google Dork: N/A Date: 1 Jan 2019 Exploit Author: Deyaa Muhammad Author EMail: contact at deyaa.me Author Blog: http://deyaa.me Poc Video: https://youtu.be/5GnHbFqRP9M Vendor Homepage: https://laravelvoyager.com/ Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2018/08/08 12:0 a.m.128 views

Responsive File Manager 9.13.1 File Disclosure

Responsive Filemanager v 9.13.1 1 Author: Silton Santos ===== Table of Contents =================================== Overview Detailed description Timeline of disclosure Thanks & Acknowledgements References ===== Overview =================================== System affected : Responsive Filemanager...

7.4AI score
Exploits0
NVD
NVD
added 2018/04/07 9:29 p.m.19 views

CVE-2018-9848

In Gxlcms QY v1.0.0713, the upload function in Lib\Lib\Action\Admin\UploadAction.class.php allows remote attackers to execute arbitrary PHP code by first using an Admin-Admin-Configsave request to change the configuploadclass value from jpg,gif,png,jpeg to jpg,gif,png,jpeg,php and then making an...

9.8CVSS9.9AI score0.02236EPSS
Exploits1References1
OSV
OSV
added 2018/02/02 5:29 p.m.2 views

CVE-2018-6580

Arbitrary file upload exists in the Jimtawl 2.1.6 and 2.2.5 component for Joomla! via a view=upload&task=upload&pop=true&tmpl=component request...

9.8CVSS5.8AI score0.36867EPSS
Exploits2References1
Github Security Blog
Github Security Blog
added 2017/10/24 6:33 p.m.44 views

Ruby on Rails vulnerable to code injection

Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOADPATH variable, a different vulnerability than CVE-2006-4112...

7.5CVSS6.9AI score0.02291EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2017/10/14 9:0 p.m.32 views

CVE-2017-12629

Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploiting XXE in conjunction with use of a Config API add-listener command to reach the RunExecutableListener class. Elasticsearch, although it uses Lucene, is NOT vulnerable to this. Note that the XML extern...

9.8AI score0.91896EPSS
Exploits11References24
OSV
OSV
added 2016/06/01 8:59 p.m.2 views

DEBIAN-CVE-2016-3088

The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request...

9.8CVSS7.7AI score0.98518EPSS
Exploits19References1
Patchstack
Patchstack
added 2014/08/01 12:0 a.m.668 views

WordPress Music Theme - Full Path Disclosure

Because of this vulnerability, the attackers can obtain sensitive information via an invalid upload request. Solution Update the theme...

3.4AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2014/08/01 12:0 a.m.16 views

WordPress Appius Theme - Full Path Disclosure

Because of this vulnerability, the attackers can obtain sensitive information via an invalid upload request. Solution Update the theme...

3.7AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2014/08/01 12:0 a.m.11 views

WordPress MoneyMasters Theme - Full Path Disclosure

Because of this vulnerability, the attackers can obtain sensitive information via an invalid upload request. Solution Update the theme...

3.7AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2014/08/01 12:0 a.m.6 views

WordPress One Page Website Theme - Full Path Disclosure

Because of this vulnerability, the attackers can obtain sensitive information via an invalid upload request. Solution Update the theme...

3.3AI score
Exploits0References1Affected Software1
Prion
Prion
added 2013/07/08 8:55 p.m.22 views

Design/Logic Flaw

WordPress before 3.5.2, when the uploads directory forbids write access, allows remote attackers to obtain sensitive information via an invalid upload request, which reveals the absolute path in an XMLHttpRequest error message...

4.3CVSS6.5AI score0.02026EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2012/12/18 1:55 a.m.11 views

CVE-2012-5574

lib/form/sfForm.class.php in Symfony CMS before 1.4.20 allows remote attackers to read arbitrary files via a crafted upload request...

5CVSS6.4AI score0.0349EPSS
Exploits1References12
Cvelist
Cvelist
added 2012/12/18 1:0 a.m.22 views

CVE-2012-5574

lib/form/sfForm.class.php in Symfony CMS before 1.4.20 allows remote attackers to read arbitrary files via a crafted upload request...

6.3AI score0.0349EPSS
Exploits1References12
NVD
NVD
added 2012/02/25 4:21 a.m.19 views

CVE-2012-0364

Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allow remote attackers to replace the configuration file via an upload request to an unspecified URL, aka Bug ID CSCtw55495...

7.8CVSS6.9AI score0.01203EPSS
Exploits0References2
Prion
Prion
added 2012/02/25 4:21 a.m.14 views

Design/Logic Flaw

Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allow remote attackers to replace the configuration file via an upload request to an unspecified URL, aka Bug ID CSCtw55495...

7.8CVSS7.5AI score0.01203EPSS
Exploits0References2Affected Software3
Cvelist
Cvelist
added 2012/02/25 2:0 a.m.22 views

CVE-2012-0364

Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allow remote attackers to replace the configuration file via an upload request to an unspecified URL, aka Bug ID CSCtw55495...

6.9AI score0.01203EPSS
Exploits0References2
Prion
Prion
added 2011/06/16 11:55 p.m.18 views

Path traversal

The rfc1867posthandler function in main/rfc1867.c in PHP before 5.3.7 does not properly restrict filenames in multipart/form-data POST requests, which allows remote attackers to conduct absolute path traversal attacks, and possibly create or overwrite arbitrary files, via a crafted upload request...

6.4CVSS7.5AI score0.19736EPSS
Exploits1References21Affected Software1
CVE
CVE
added 2011/06/16 11:0 p.m.163 views

CVE-2011-2202

CVE-2011-2202 details (from provided sources): In PHP before 5.3.7, rfc1867_post_handler in main/rfc1867.c does not properly restrict filenames in multipart/form-data POST requests, enabling remote attackers to perform absolute path traversal via a crafted upload and possibly create or overwrite ...

6.4CVSS8.1AI score0.19736EPSS
Exploits1References21Affected Software1
Rows per page
Query Builder