5 matches found
CVE-2018-7665
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/clipbucketfileuploadexec.rb 2025-02-06 03:13:43+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:10:08+00:00| see...
ClipBucket beats_uploader Unauthenticated Arbitrary File Upload
This module exploits a vulnerability found in ClipBucket versions before 4.0.0 Release 4902. A malicious file can be uploaded using an unauthenticated arbitrary file upload vulnerability. It is possible for an attacker to upload a malicious script to issue operating system commands. This issue is...
CVE-2018-7665
An issue was discovered in ClipBucket before 4.0.0 Release 4902. A malicious file can be uploaded via the name parameter to actions/beatsuploader.php or actions/photouploader.php, or the coverPhoto parameter to editaccount.php...
CVE-2018-7665
The CVE-2018-7665 issue affects ClipBucket before 4.0.0 Release 4902, where an unauthenticated attacker can upload malicious files via the name parameter to actions/beats_uploader.php or actions/photo_uploader.php, or via the coverPhoto parameter to edit_account.php. The NVD describes a critical ...
ClipBucket <= 4.0.0 Multiple Vulnerabilities
ClipBucket is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oxygenz:clipbucket"; if...