5 matches found
CVE-2019-10652
An issue was discovered in flatCore 1.4.7. acp/acp.php allows remote authenticated administrators to upload arbitrary .php files, related to the addons feature...
CVE-2019-10652
creationtimestamp| type| source ---|---|--- 2025-04-11 21:02:18+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lmkw4beyob2x...
📄 flatCore 1.5.5 Shell Upload
flatCore version 1.5.5 suffers from a remote shell upload vulnerability. Exploit Title: flatCore Arbitrary .php File Upload via acp/acp.php Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/flatCore/flatCore-CMS Software Link: https://github.com/flatCore/flatCore-CMS...
CVE-2019-10652
An issue was discovered in flatCore 1.4.7. acp/acp.php allows remote authenticated administrators to upload arbitrary .php files, related to the addons feature...
CVE-2019-10652
FlatCore vulnerable component: acp/acp.php in version 1.4.7. The issue allows remote authenticated administrators to upload arbitrary PHP files via the addons/upload mechanism, enabling potential remote code execution as indicated by described exploit activity in multiple sources (e.g., exploit-d...