Lucene search
K

6 matches found

Nuclei
Nuclei
added 13 hours ago141 views

Likeshop < 2.5.7.20210311 - Arbitrary File Upload

A vulnerability classified as critical was found in Likeshop up to 2.5.7.20210311. This vulnerability affects the function FileServer::userFormImage of the file server/application/api/controller/File.php of the component HTTP POST Request Handler. The manipulation of the argument file with an...

9.8CVSS6.8AI score0.70688EPSS
Exploits1References5
GithubExploit
GithubExploit
added 2024/06/12 9:46 a.m.321 views

Exploit for Unrestricted Upload of File with Dangerous Type in Likeshop

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

9.8CVSS7.6AI score0.70688EPSS
Exploits1
Circl
Circl
added 2024/01/10 12:26 a.m.170 views

CVE-2024-0352

creationtimestamp| type| source ---|---|--- 2024-01-10 00:26:49+00:00| seen| https://t.me/ctinow/165471 2024-01-13 16:56:20+00:00| published-proof-of-concept| https://t.me/codeb0ss/1353 2024-01-26 11:11:49+00:00| seen| https://t.me/ctinow/174138 2024-02-25 16:59:19+00:00|...

9.8CVSS7.1AI score0.70688EPSS
In wildExploits1References6
Vulnrichment
Vulnrichment
added 2024/01/09 11:0 p.m.5 views

CVE-2024-0352 Likeshop HTTP POST Request File.php userFormImage unrestricted upload

A vulnerability classified as critical was found in Likeshop up to 2.5.7.20210311. This vulnerability affects the function FileServer::userFormImage of the file server/application/api/controller/File.php of the component HTTP POST Request Handler. The manipulation of the argument file leads to...

7.5CVSS9.6AI score0.70688EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/01/09 11:0 p.m.30 views

CVE-2024-0352 Likeshop HTTP POST Request File.php userFormImage unrestricted upload

A vulnerability classified as critical was found in Likeshop up to 2.5.7.20210311. This vulnerability affects the function FileServer::userFormImage of the file server/application/api/controller/File.php of the component HTTP POST Request Handler. The manipulation of the argument file leads to...

7.5CVSS9.8AI score0.70688EPSS
Exploits1References3
CVE
CVE
added 2024/01/09 11:0 p.m.98 views

CVE-2024-0352

CVE-2024-0352 affects Likeshop up to 2.5.7.20210311. The vulnerability is in FileServer::userFormImage (file server/application/api/controller/File.php) where manipulating the file argument leads to unrestricted file upload. Impact scope includes remote execution potential with impact to confiden...

9.8CVSS9.5AI score0.70688EPSS
In wildExploits1References3Affected Software1
Rows per page
Query Builder