Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 8:7 a.m.8 views

CVE-2019-14280

In some circumstances, Craft 2 before 2.7.10 and 3 before 3.2.6 wasn't stripping EXIF data from user-uploaded images when it was configured to do so, potentially exposing personal/geolocation data to the public...

5.3CVSS6.8AI score0.07968EPSS
Exploits4References1
exploitpack
exploitpack
added 2019/09/02 12:0 a.m.77 views

Craft CMS 2.7.93.2.5 - Information Disclosure

Craft CMS 2.7.93.2.5 - Information Disclosure Exploit Title : CraftCms Users information disclosure From uploaded File Author Discovered By : Mohammed Abdul Raheem Author's Company Name : TrekShield IT Solution Author Exploit-db : https://www.exploit-db.com/?author=9783 Found Vulnerability On :...

5CVSS5.2AI score0.07968EPSS
Exploits4
Exploit DB
Exploit DB
added 2019/09/02 12:0 a.m.450 views

Craft CMS 2.7.9/3.2.5 - Information Disclosure

Exploit Title : CraftCms Users information disclosure From uploaded File Author Discovered By : Mohammed Abdul Raheem Author's Company Name : TrekShield IT Solution Author Exploit-db : https://www.exploit-db.com/?author=9783 Found Vulnerability On : 20-07-2019 Vendor Homepage:https://craftcms.com...

5.3CVSS5.6AI score0.07968EPSS
Exploits4
CVE
CVE
added 2019/07/26 3:52 a.m.311 views

CVE-2019-14280

CVE-2019-14280 affects Craft CMS (versions prior to 2.7.10 and 3 prior to 3.2.6). The issue is an information disclosure where EXIF data is not stripped from user-uploaded images when configured to do so, potentially exposing personal/geolocation data. Red Hat and NVD entries reiterate the vulner...

5.3CVSS5.1AI score0.07968EPSS
Exploits4References3Affected Software1
Rows per page
Query Builder