5 matches found
EUVD-2025-21749
Malicious code in bioql PyPI...
CVE-2025-34121
An unauthenticated arbitrary file upload vulnerability exists in Idera Up.Time Monitoring Station versions up to and including 7.2. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP files to the webroot. Successful exploitation results in...
CVE-2025-34121 Idera Up.Time ≤ 7.2 post2file.php Arbitrary File Upload RCE
An unauthenticated arbitrary file upload vulnerability exists in Idera Up.Time Monitoring Station versions up to and including 7.2. The wizards/post2file.php script accepts arbitrary POST parameters, allowing attackers to upload crafted PHP files to the webroot. Successful exploitation results in...
CVE-2025-34121
Idera Up.Time Monitoring Station
CVE-2015-9263
The CVE-2015-9263 entry concerns Idera Up.Time Monitoring Station (versions up to 7.5.0 build 16 and 7.4.0 build 13) where the post2file.php upload mechanism allows uploading arbitrary files (e.g., PHP) to the webroot. The underlying issue is an unauthenticated arbitrary file upload that can lead...