2 matches found
CVE-2018-6580
Arbitrary file upload exists in the Jimtawl 2.1.6 and 2.2.5 component for Joomla! via a view=upload&task=upload&pop=true&tmpl=component request...
CVE-2018-6580
CVE-2018-6580 affects Joomla! Jimtawl component versions 2.1.6 and 2.2.5, allowing arbitrary file upload through view=upload&task=upload&pop=true&tmpl=component. The issue enables an attacker to upload arbitrary files (e.g., web shells) via the upload endpoint, as documented by NVD/CNVD entries a...