Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/05/22 6:45 p.m.10 views

CVE-2021-40887

Projectsend version r1295 is affected by a directory traversal vulnerability. Because of lacking sanitization input for files parameter, an attacker can add ../ to move all PHP files or any file on the system that has permissions to /upload/files/ folder...

10CVSS6.9AI score0.02294EPSS
Exploits1
checkpoint_advisories
checkpoint_advisories
added 2021/11/15 12:0 a.m.21 views

Projectsend Directory Traversal (CVE-2021-40887)

A directory traversal vulnerability exists in Projectsend. Successful exploitation of this vulnerability could allow an attacker to access arbitrary files on the affected system...

10CVSS8.8AI score0.02294EPSS
Exploits1
attackerkb
attackerkb
added 2021/10/11 11:15 a.m.3 views

CVE-2021-40887

Projectsend version r1295 is affected by a directory traversal vulnerability. Because of lacking sanitization input for files parameter, an attacker can add ../ to move all PHP files or any file on the system that has permissions to /upload/files/ folder...

10CVSS7.3AI score0.02294EPSS
Exploits1References2
cvelist
cvelist
added 2021/10/11 10:12 a.m.18 views

CVE-2021-40887

Projectsend version r1295 is affected by a directory traversal vulnerability. Because of lacking sanitization input for files parameter, an attacker can add ../ to move all PHP files or any file on the system that has permissions to /upload/files/ folder...

9.7AI score0.02294EPSS
Exploits1References1
cve
cve
added 2021/10/11 10:12 a.m.59 views

CVE-2021-40887

CVE-2021-40887 affects Projectsend vR1295 and is a directory traversal vulnerability. The issue arises from lack of sanitization for the files[] input parameter, enabling an attacker to append ../ to paths and access arbitrary files within the /upload/files/ directory (or other files the web serv...

10CVSS9.5AI score0.02294EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder