4 matches found
CVE-2019-20385
The CSV upload feature in /supervisor/procesacarga.php on Logaritmo Aware CallManager 2012 devices allows upload of .php files with a text/ content type. The PHP code can then be executed by visiting a /supervisor/csv/ URI...
CVE-2019-20385
creationtimestamp| type| source ---|---|--- 2020-01-21 07:37:36+00:00| published-proof-of-concept| https://t.me/cveNotify/345...
CVE-2019-20385
The CSV upload feature in /supervisor/procesacarga.php on Logaritmo Aware CallManager 2012 devices allows upload of .php files with a text/ content type. The PHP code can then be executed by visiting a /supervisor/csv/ URI...
CVE-2019-20385
CVE-2019-20385 affects Logaritmo Aware CallManager 2012 devices. The vulnerability arises from the CSV upload feature in /supervisor/procesa_carga.php, which allows uploading of .php files with a text/* content type. The uploaded PHP code can then be executed by accessing /supervisor/csv/. Red Ha...