EUVD-2026-25936

An attacker on the same network as the remote application may be able to utilize a timing attack to discover information about the remote secret. In extreme circumstances this could result in the attacker determining the secret and uploading changed classes, thereby achieving remote code executio...

PT-2024-15001 · Unknown · Class.Upload.Php

Name of the Vulnerable Software and Affected Versions: class.upload.php affected versions not specified Description: The issue is related to a stored XSS vulnerability in the default configuration of class.upload.php, a PHP library for managing image uploads. This vulnerability occurs because the...

class.upload.php code problem vulnerability

class.upload.php is the class that manages file uploads for you. A code issue vulnerability exists in class.upload.php that stems from not performing deep checks on uploaded files, leading to cross-site scripting when using the default configuration...

Arbitrary File Upload

Overview verot/class.upload.php is a PHP class that can be used to upload files and manipulate images very easily. Affected versions of this package are vulnerable to Arbitrary File Upload. The following extensions could be used to bypass the blacklist provided by the package and achieve code...

class.upload.php v 0.30 Remote File Upload Vulnerability

Exploit for php platform in category web applications 0day.today 2018-03-09...