Lucene search
K

5 matches found

Circl
Circl
added 2018/05/08 12:0 a.m.17 views

CVE-2017-9080

creationtimestamp| type| source ---|---|--- 2018-05-08 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44599 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/playsmsfilenameexec.rb 2025-02-06 03:13:43+00:00| see...

8.8CVSS8.8AI score0.62308EPSS
Exploits3References2
NVD
NVD
added 2017/05/19 3:29 p.m.11 views

CVE-2017-9080

PlaySMS 1.4 allows remote code execution because PHP code in the name of an uploaded .php file is executed. sendfromfile.php has a combination of Unrestricted File Upload and Code Injection...

8.8CVSS9.1AI score0.62308EPSS
Exploits3References3
OSV
OSV
added 2017/05/19 3:29 p.m.14 views

CVE-2017-9080

PlaySMS 1.4 allows remote code execution because PHP code in the name of an uploaded .php file is executed. sendfromfile.php has a combination of Unrestricted File Upload and Code Injection...

8.8CVSS8AI score
Exploits0References3
CVE
CVE
added 2017/05/19 3:0 p.m.50 views

CVE-2017-9080

CVE-2017-9080 affects PlaySMS 1.4, where the file upload mechanism in the PHP file sendfromfile.php can be abused to achieve remote code execution. The vulnerability combines an Unrestricted File Upload with Code Injection via the name of an uploaded PHP file, allowing authenticated users to uplo...

8.8CVSS9AI score0.62308EPSS
Exploits3References3Affected Software1
Cvelist
Cvelist
added 2017/05/19 3:0 p.m.21 views

CVE-2017-9080

PlaySMS 1.4 allows remote code execution because PHP code in the name of an uploaded .php file is executed. sendfromfile.php has a combination of Unrestricted File Upload and Code Injection...

9.1AI score0.62308EPSS
Exploits3References3
Rows per page
Query Builder