23 matches found
CVE-2020-10934
Acyba AcyMailing before 6.9.2 mishandles file uploads by admins...
EUVD-2018-20709
Malware in sbrugna...
EUVD-2020-3340
Malware in sbrugna...
Acyba AcyMailing 代码问题漏洞
Acyba AcyMailing is a suite of newsletter and marketing automation software from the Acyba team in France. A security vulnerability exists in Acyba AcyMailing versions prior to 8.3.0, which stems from incorrect input validation leading to the unrestricted upload of dangerous files...
Acyba AcyMailing 跨站脚本漏洞
Acyba AcyMailing is a suite of newsletter and marketing automation software from the Acyba team in France. A security vulnerability exists in Acyba AcyMailing prior to version 8.3.0 that stems from the presence of a stored cross-site scripting XSS vulnerability...
Acyba AcyMailing Code Issue Vulnerability
Acyba AcyMailing is a suite of newsletter and marketing automation software from the Acyba team in France. A code issue vulnerability exists in Acyba AcyMailing versions prior to 6.9.2, which arises from improper handling of file uploads and can be exploited by a remote attacker to execute...
CVE-2020-10934
Acyba AcyMailing before 6.9.2 mishandles file uploads by admins...
Design/Logic Flaw
Acyba AcyMailing before 6.9.2 mishandles file uploads by admins...
CVE-2020-10934
Acyba AcyMailing before 6.9.2 mishandles file uploads by admins...
CVE-2020-10934
CVE-2020-10934 affects the Joomla! plugin "AcyMailing" prior to version 6.9.2. The root cause is mishandling of file uploads by admins, allowing an attacker to upload arbitrary files (CWE-434) and potentially execute arbitrary PHP code. Affected software: AcyMailing; vulnerable component: file up...
Joomla! Acyba AcySMS Extension CVS Injection Vulnerability
Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds , site search and other features . Acyba AcySMS extension is used in which an e-commerce messaging system plug-ins . A CVS injection vulnerability exists in the...
Joomla AcySMS 3.5.0 Component - CSV Macro Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Joomla! Component AcySMS 3.5.0 CSV Macro Injection Exploit Author: Sureshbabu Narvaneni Vendor Homepage: https://www.acyba.com Software Link: https://extensions.joomla.org/extensions/extension/communication/phone-a-sms/acysms/...
Joomla Acymailing Starter 5.9.5 Component - CSV Macro Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Joomla! Component Acymailing Starter 5.9.5 CSV Macro Injection Exploit Author: Sureshbabu Narvaneni Vendor Homepage: https://www.acyba.com Software Link: https://extensions.joomla.org/extension/acymailing-starter/ Affected...
CVE-2018-9107
CSV Injection aka Excel Macro Injection or Formula Injection exists in the export feature in the Acyba AcyMailing extension before 5.9.6 for Joomla! via a value that is mishandled in a CSV export...
Design/Logic Flaw
CSV Injection aka Excel Macro Injection or Formula Injection exists in the export feature in the Acyba AcyMailing extension before 5.9.6 for Joomla! via a value that is mishandled in a CSV export...
CVE-2018-9106
CSV Injection aka Excel Macro Injection or Formula Injection exists in the export feature in the Acyba AcySMS extension before 3.5.1 for Joomla! via a value that is mishandled in a CSV export...
Design/Logic Flaw
CSV Injection aka Excel Macro Injection or Formula Injection exists in the export feature in the Acyba AcySMS extension before 3.5.1 for Joomla! via a value that is mishandled in a CSV export...
CVE-2018-9106
CSV Injection aka Excel Macro Injection or Formula Injection exists in the export feature in the Acyba AcySMS extension before 3.5.1 for Joomla! via a value that is mishandled in a CSV export...
CVE-2018-9106
CVE-2018-9106 affects the Joomla! AcySMS extension prior to 3.5.1. The vulnerability is a CSV Injection/Formula Injection in the export feature, where a value mishandled in a CSV export can be exploited. Documented impact includes CSV injections via exported data, potentially enabling adversaries...
CVE-2018-9107
CVE-2018-9107 affects the Joomla! AcyMailing extension (Acymailing) before 5.9.6, where the CSV export feature mishandles a value in the exported data, enabling CSV/Excel macro injection (CSV Injection). Public references describe an attack method for Acymailing Starter 5.9.5 and report CVE-2018-...