Lucene search
K

4 matches found

Cvelist
Cvelist
added 2018/05/29 8:0 p.m.21 views

CVE-2018-11392

An arbitrary file upload vulnerability in /classes/profile.class.php in Jigowatt "PHP Login & User Management" before 4.1.1, as distributed in the Envato Market, allows any remote authenticated user to upload .php files to the web server via a profile avatar field. This results in arbitrary code...

8.7AI score0.04582EPSS
Exploits2References4
CVE
CVE
added 2018/05/29 8:0 p.m.43 views

CVE-2018-11392

The CVE-2018-11392 vulnerability affects Jigowatt “PHP Login & User Management” (Envato Market) via /classes/profile.class.php. Versions before 4.1.1 allow any remote authenticated user to upload a .php file through the profile avatar field, resulting in arbitrary code execution when the uploaded...

8.8CVSS8.5AI score0.04582EPSS
Exploits2References4Affected Software1
0day.today
0day.today
added 2018/05/25 12:0 a.m.173 views

PHP Login And User Management 4.1.0 Shell Upload Vulnerability

Exploit for php platform in category web applications Title PHP Login & User Management = 4.1.0 - Arbitrary File Upload CVE-2018-11392 Product PHP Login & User Management https://codecanyon.net/item/php-login-user-management/49008 CVE CVE-2018-11392 Credit Reginald Dodd Description An arbitrary...

8.9AI score0.04582EPSS
Exploits2
Packet Storm
Packet Storm
added 2018/05/24 12:0 a.m.39 views

PHP Login And User Management 4.1.0 Shell Upload

Title PHP Login & User Management = 4.1.0 - Arbitrary File Upload CVE-2018-11392 Product PHP Login & User Management https://codecanyon.net/item/php-login-user-management/49008 CVE CVE-2018-11392 Credit Reginald Dodd Description An arbitrary file upload vulnerability in /classes/profile.class.php...

8.9AI score0.04582EPSS
Exploits2
Rows per page
Query Builder