7 matches found
EUVD-2019-7620
Malware in sbrugna...
CVE-2019-17188
An unrestricted file upload vulnerability was discovered in catalog/productinfo/imageupload in Fecshop FecMall 2.3.4. An attacker can bypass a front-end restriction and upload PHP code to the webserver, by providing image data and the image/jpeg content type, with a .php extension. This occurs...
yii2_fecshop 跨站脚本漏洞
yii2fecshop is an application system . Based on php Yii2 framework on top of the development of an excellent open source e-commerce system. A security vulnerability exists in version 2.x of yii2fecshop, which stems from a reflected XSS vulnerability in the shopping cart page...
CVE-2019-17188
An unrestricted file upload vulnerability was discovered in catalog/productinfo/imageupload in Fecshop FecMall 2.3.4. An attacker can bypass a front-end restriction and upload PHP code to the webserver, by providing image data and the image/jpeg content type, with a .php extension. This occurs...
CVE-2019-17188
An unrestricted file upload vulnerability was discovered in catalog/productinfo/imageupload in Fecshop FecMall 2.3.4. An attacker can bypass a front-end restriction and upload PHP code to the webserver, by providing image data and the image/jpeg content type, with a .php extension. This occurs...
Unrestricted file upload
An unrestricted file upload vulnerability was discovered in catalog/productinfo/imageupload in Fecshop FecMall 2.3.4. An attacker can bypass a front-end restriction and upload PHP code to the webserver, by providing image data and the image/jpeg content type, with a .php extension. This occurs...
CVE-2019-17188
CVE-2019-17188 describes an unrestricted file upload in catalog/productinfo/imageupload of Fecshop/FecMall 2.3.4. An attacker can bypass front-end restrictions and upload PHP code to the webserver by supplying image data with image/jpeg content type and a .php extension, due to validation relying...