Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:19 a.m.13 views

CVE-2013-3591

vTiger CRM 5.3 and 5.4: 'files' Upload Folder Arbitrary PHP Code Execution Vulnerability...

8.8CVSS7.4AI score0.43103EPSS
Exploits6References1
Cvelist
Cvelist
added 2020/02/07 2:15 p.m.34 views

CVE-2013-3591

vTiger CRM 5.3 and 5.4: 'files' Upload Folder Arbitrary PHP Code Execution Vulnerability...

9AI score0.43103EPSS
Exploits6References4
CVE
CVE
added 2020/02/07 2:15 p.m.68 views

CVE-2013-3591

Summary of CVE-2013-3591 : The vulnerability affects vTiger CRM versions 5.3 and 5.4, where the attacker can abuse the vulnerable vTiger “files” upload folder to upload a PHP script and achieve arbitrary PHP code execution. Multiple connected sources document an authenticated remote-code-executio...

8.8CVSS8.8AI score0.43103EPSS
Exploits6References4Affected Software1
0day.today
0day.today
added 2013/10/31 12:0 a.m.65 views

vTigerCRM v5.4.0/v5.3.0 Authenticated Remote Code Execution

vTiger CRM allows an authenticated user to upload files to embed within documents. Due to insufficient privileges on the 'files' upload folder, an attacker can upload a PHP script and execute arbitrary PHP code remotely. This Metasploit module was tested against vTiger CRM v5.4.0 and v5.3.0. This...

9.1AI score0.43103EPSS
Exploits6
Circl
Circl
added 2013/10/31 12:0 a.m.12 views

CVE-2013-3591

creationtimestamp| type| source ---|---|--- 2013-10-31 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/29319 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/vtigerphpexec.rb 2025-02-06 03:13:41+00:00| seen|...

8.8CVSS7.3AI score0.43103EPSS
Exploits6References2
Exploit DB
Exploit DB
added 2013/10/31 12:0 a.m.27 views

vTiger CRM 5.3.0 5.4.0 - (Authenticated) Remote Code Execution (Metasploit)

This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'vTigerCRM v5.4.0/v5.3.0 Authenticated Remote Code Execution', 'Description' = %q vTiger CRM allows an authenticated user to upload...

8.8CVSS7.4AI score0.43103EPSS
Exploits6
Rows per page
Query Builder