Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:8 a.m.8 views

CVE-2019-19576

class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for Joomla! and other products, omits .phar from the set of dangerous file extensions...

9.8CVSS6.5AI score0.26184EPSS
Exploits7References1
OSV
OSV
added 2020/02/28 1:10 a.m.53 views

GHSA-2GC7-W4HW-RR2M class.upload.php in verot.net omits .pht from the set of dangerous file extensions

class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension for Joomla! and other products, omits .pht from the set of dangerous file extensions, a similar issue to CVE-2019-19576...

9.8CVSS9.4AI score0.04153EPSS
Exploits3References4
Github Security Blog
Github Security Blog
added 2020/02/28 1:10 a.m.85 views

class.upload.php in verot.net omits .pht from the set of dangerous file extensions

class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension for Joomla! and other products, omits .pht from the set of dangerous file extensions, a similar issue to CVE-2019-19576...

9.8CVSS2AI score0.04153EPSS
Exploits3References5Affected Software1
Check Point Advisories
Check Point Advisories
added 2019/12/26 12:0 a.m.96 views

Verot Class.upload.php Remote Code Execution (CVE-2019-19576; CVE-2019-19634)

A file upload vulnerability exists in class.upload.php. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.7AI score0.26184EPSS
Exploits9
Cvelist
Cvelist
added 2019/12/17 5:11 p.m.29 views

CVE-2019-19634

class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension for Joomla! and other products, omits .pht from the set of dangerous file extensions, a similar issue to CVE-2019-19576...

9.5AI score0.04153EPSS
Exploits3References3
Packet Storm
Packet Storm
added 2019/12/06 12:0 a.m.227 views

Verot 2.0.3 Remote Code Execution

Exploit Title: Verot 2.0.3 - Remote Code Execution Date: 2019-12-05 Exploit Author: Jinny Ramsmark Vendor Homepage: https://www.verot.net/phpclassupload.htm Software Link: https://github.com/verot/class.upload.php Version: '; $quality = "85"; $baseurl = "http://lorempixel.com"; echo "-=Imagejpeg...

0.1AI score0.26184EPSS
Exploits7
0day.today
0day.today
added 2019/12/06 12:0 a.m.853 views

Verot 2.0.3 - Remote Code Execution Exploit #RCE

Exploit for php platform in category web applications Exploit Title: Verot 2.0.3 - Remote Code Execution Date: 2019-12-05 Exploit Author: Jinny Ramsmark Vendor Homepage: https://www.verot.net/phpclassupload.htm Software Link: https://github.com/verot/class.upload.php Version: '; $quality = "85";...

0.1AI score0.26184EPSS
Exploits7
exploitpack
exploitpack
added 2019/12/06 12:0 a.m.129 views

Verot 2.0.3 - Remote Code Execution

Verot 2.0.3 - Remote Code Execution Exploit Title: Verot 2.0.3 - Remote Code Execution Date: 2019-12-05 Exploit Author: Jinny Ramsmark Vendor Homepage: https://www.verot.net/phpclassupload.htm Software Link: https://github.com/verot/class.upload.php Version: '; $quality = "85"; $baseurl =...

7.5CVSS0.1AI score0.26184EPSS
Exploits7
Exploit DB
Exploit DB
added 2019/12/06 12:0 a.m.335 views

Verot 2.0.3 - Remote Code Execution

Exploit Title: Verot 2.0.3 - Remote Code Execution Date: 2019-12-05 Exploit Author: Jinny Ramsmark Vendor Homepage: https://www.verot.net/phpclassupload.htm Software Link: https://github.com/verot/class.upload.php Version: '; $quality = "85"; $baseurl = "http://lorempixel.com"; echo "-=Imagejpeg...

9.8CVSS9.8AI score0.26184EPSS
Exploits7
NVD
NVD
added 2019/12/04 6:15 p.m.37 views

CVE-2019-19576

class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for Joomla! and other products, omits .phar from the set of dangerous file extensions...

9.8CVSS9.5AI score0.26184EPSS
Exploits7References10
CVE
CVE
added 2019/12/04 5:33 p.m.123 views

CVE-2019-19576

CVE-2019-19576 concerns verot.net’s class.upload.php (versions < 1.0.3 and

9.8CVSS9.3AI score0.26184EPSS
Exploits7References10Affected Software1
Rows per page
Query Builder