4 matches found
CVE-2017-14521
creationtimestamp| type| source ---|---|--- 2018-02-05 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43963...
CVE-2017-14521
In WonderCMS 2.3.1, the upload functionality accepts random application extensions and leads to malicious File Upload...
CVE-2017-14521
WonderCMS 2.3.1 is affected by CVE-2017-14521 due to an upload function that accepts arbitrary file extensions, allowing malicious files to be uploaded. Proof-of-concept materials show a PHP shell upload and access to executed commands via a crafted file, indicating a vulnerability in the file-up...
CVE-2017-14521
In WonderCMS 2.3.1, the upload functionality accepts random application extensions and leads to malicious File Upload...