EUVD-2015-5414

Malware in sbrugna...

CVE-2024-3803 Vesystem Cloud Desktop fileupload.php unrestricted upload

A vulnerability classified as critical was found in Vesystem Cloud Desktop up to 20240408. This vulnerability affects unknown code of the file /Public/webuploader/0.1.5/server/fileupload.php. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely...

CVE-2024-3803 Vesystem Cloud Desktop fileupload.php unrestricted upload

A vulnerability classified as critical was found in Vesystem Cloud Desktop up to 20240408. This vulnerability affects unknown code of the file /Public/webuploader/0.1.5/server/fileupload.php. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely...

CVE-2015-5458

PivotX (fileupload.php) is affected by CVE-2015-5458: a session fixation vulnerability in PivotX before 2.3.11 allows remote attackers to hijack sessions via the sess parameter. Affected software: PivotX prior to 2.3.11; remediation is to upgrade to PivotX 2.3.11 or later (per CVE references).

pivotx -- Multiple unrestricted file upload vulnerabilities

Pivotx reports: Multiple unrestricted file upload vulnerabilities in fileupload.php in PivotX before 2.3.9 allow remote authenticated users to execute arbitrary PHP code by uploading a file with a 1 .php or 2 .php extension, and then accessing it via unspecified vectors...

Phorm v3.0 Remote File Upload Vulnerability

Phorm v3.0 Remote File Upload Vulnerability ilker kandemir ilkerkandemiratmynet.com Download: ftp://ftp.holotech.net/phorm/phorm.zip TnX.: Ajann, Dumenci, H0tTurk, Str0ke Exploit: http://site/phormpath/lib/fileupload.php +===== upload your shell.php http://site/phormpath/files/phpshell.php...