2 matches found
CVE-2019-17058
Footy Tipping Software AFL Web Edition 2019 allows arbitrary file upload and resultant remote code execution because a whitelist can be bypassed by an Administrator who uploads a crafted upload.dat file...
CVE-2019-17058
Footy Tipping Software AFL Web Edition 2019 contains a vulnerability where an Administrator can bypass a whitelist and upload a crafted upload.dat file, enabling arbitrary file upload and remote code execution. The issue affects the web edition of the Footy Tipping Software AFL 2019; exploitation...