2 matches found
CVE-2021-36121
An issue was discovered in Echo ShareCare 8.15.5. The file-upload feature in Access/DownloadFeedMnt/FileUploadUpd.cfm is susceptible to an unrestricted upload vulnerability via the name1 parameter, when processing remote input from an authenticated user, leading to the ability for arbitrary files...
CVE-2021-36121
Echo ShareCare 8.15.5 contains an unrestricted file upload vulnerability in Access/DownloadFeed_Mnt/FileUpload_Upd.cfm, exploitable via the name1 parameter. Processing remote input from an authenticated user allows writing arbitrary files to arbitrary filesystem locations through ../ Directory Tr...