4 matches found
CVE-2013-4898
CVE-2013-4898 : Unrestricted file upload in SocialEngine Timeline Plugin 4.2.5p9 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then retrieving it from public/temporary/timeline/. The vulnerability stems from accepting uploaded files ...
SocialEngine 4.5 Shell Upload
INTRODUCTION ------------------------------------------------------------- The plugin has the objective give you a better visual for the user profile, allowed the addition of cover image keeping the layout closest to the style of modern social networks, among other features. + DESCRIPTION OF...
SocialEngine Timeline Plugin 4.2.5p9 - Arbitrary File Upload
SocialEngine Timeline Plugin 4.2.5p9 - Arbitrary File Upload Exploit Title: Sending php file in the timeline plugin cover image of SocialEngine 4.5 Date: 2013-08-17 Discovered by: Wesley Henrique Leite aka "spyk2r" Vendor Homepage: http://webhive.com.ua/ Software Link:...
SocialEngine Timeline Plugin 4.2.5p9 - Arbitrary File Upload
Exploit Title: Sending php file in the timeline plugin cover image of SocialEngine 4.5 Date: 2013-08-17 Discovered by: Wesley Henrique Leite aka "spyk2r" Vendor Homepage: http://webhive.com.ua/ Software Link: http://webhive.com.ua/store/product.php?idproduct=46 Version: plugin Timeline 4.2.5p9 fo...