Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2024/09/13 6:0 a.m.13 views

CVE-2024-7863 Favicon Generator < 2.1 - Arbitrary File Upload via CSRF

The Favicon Generator CLOSED WordPress plugin before 2.1 does not validate files to be uploaded and does not have CSRF checks, which could allow attackers to make logged in admin upload arbitrary files such as PHP on the server...

7.3AI score0.00275EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/06/14 1:37 p.m.14 views

CVE-2021-24349 Gallery From Files <= 1.6.0 - Reflected Cross-Site Scripting (XSS)

This Gallery from files WordPress plugin through 1.6.0 gives the functionality of uploading images to the server. But filenames are not properly sanitized before being output in an error message when they have an invalid extension, leading to a reflected Cross-Site Scripting issue. Due to the lac...

6.2AI score0.00412EPSS
Exploits2References1
Exploit DB
Exploit DB
added 2021/03/17 12:0 a.m.464 views

VestaCP 0.9.8 - File Upload CSRF

Exploit Title: VestaCP 0.9.8 - File Upload CSRF Exploit Author: Fady Othman Date: 16-03-2021 Vendor Homepage: https://vestacp.com/ Software Link: https://github.com/myvesta/vesta Version: Vesta Control Panel aka VestaCP through 0.9.8-27 and myVesta through 0.9.8-26-39 CVE ID: CVE-2021-28379 Patch...

8.8CVSS8.9AI score0.06033EPSS
Exploits4
NVD
NVD
added 2019/05/24 6:29 p.m.15 views

CVE-2016-10756

Kliqqi 3.0.0.5 allows CSRF with resultant Arbitrary File Upload because module.php?module=upload can be used to configure the uploading of .php files, and then modules/upload/uploadmain.php can be used for the upload itself...

8.8CVSS8.8AI score0.00669EPSS
Exploits1References2
seebug.org
seebug.org
added 2014/05/27 12:0 a.m.21 views

Destoon B2B 2014-05-21最新版csrf getshell

简要描述: 上传问题+csrf+后台任意命令执行 = csrf getshell 详细说明: 先说上传问题,自带的fck编辑器没有验证上传图片的合法性,只判断了后缀名。 可以通过上传一个.jpg后缀的swf来进行csrf 然后是后台命令执行 /member/admin/sendmail.inc.php 行151 default: ifisset$send ifisset$preview && $preview $content = stripslashes$content; if$template if$sendtype == 2 $emails = explode"\n",...

7.1AI score
Exploits0
Rows per page
Query Builder