2 matches found
PivotX Multiple Vulnerabilities (Jul 2015)
PivotX is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:pivotx:pivotx"; if description...
CVE-2015-5457
PivotX prior to 2.3.11 is vulnerable: it fails to validate the new file extension when renaming a file that has multiple extensions, enabling remote code execution via a crafted file (e.g., foo.php.php). Affected product: PivotX. Root cause: improper validation of file extensions during rename. I...