4 matches found
CVE-2014-8337
CVE-2014-8337 affects HelpDEZk 1.0.1 and earlier due to an unrestricted upload of files with dangerous extensions in /includes/classes/uploadify-v2.1.4/uploadify.php . The vulnerability arises from lack of validation of file extensions, enabling a remote attacker to upload arbitrary files and the...
HelpDEZk 1.0.1 Unrestricted File Upload Vulnerability
HelpDEZk version 1.0.1 suffers from a remote unrestricted file upload vulnerability. Product: HelpDEZk Vendor: HelpDEZk Vulnerable Versions: 1.0.1 and probably prior Tested Version: 1.0.1 Advisory Publication: October 15, 2014 without technical details Vendor Notification: October 15, 2014 Public...
HelpDEZk 1.0.1 Unrestricted File Upload
Advisory ID: HTB23239 Product: HelpDEZk Vendor: HelpDEZk Vulnerable Versions: 1.0.1 and probably prior Tested Version: 1.0.1 Advisory Publication: October 15, 2014 without technical details Vendor Notification: October 15, 2014 Public Disclosure: November 5, 2014 Vulnerability Type: Unrestricted...
Arbitrary File Upload in HelpDEZk
High-Tech Bridge Security Research Lab discovered vulnerability in HelpDEZk, which can be exploited to compromise vulnerable web site. 1 Unrestricted Upload of File with Dangerous Type in HelpDEZk: CVE-2014-8337 The vulnerability exists due to absence of validation of file extensions when uploadi...