259 matches found
CVE-2022-50912
ImpressCMS 1.4.4 is affected by a file upload vulnerability caused by weak extension sanitization. The issue allows bypassing upload restrictions using alternative extensions such as .php2, .php6, .php7, .phps, and .pht to upload and potentially execute arbitrary PHP code on the server. The CVE e...
CVE-2022-50912 ImpressCMS 1.4.4 - Unrestricted File Upload
ImpressCMS 1.4.4 contains a file upload vulnerability with weak extension sanitization that allows attackers to upload potentially malicious files. Attackers can bypass file upload restrictions by using alternative file extensions .php2.php6.php7.phps.pht to execute arbitrary PHP code on the serv...
CVE-2022-50912 ImpressCMS 1.4.4 - Unrestricted File Upload
ImpressCMS 1.4.4 contains a file upload vulnerability with weak extension sanitization that allows attackers to upload potentially malicious files. Attackers can bypass file upload restrictions by using alternative file extensions .php2.php6.php7.phps.pht to execute arbitrary PHP code on the serv...
CVE-2022-50912 ImpressCMS 1.4.4 - Unrestricted File Upload
ImpressCMS 1.4.4 contains a file upload vulnerability with weak extension sanitization that allows attackers to upload potentially malicious files. Attackers can bypass file upload restrictions by using alternative file extensions .php2.php6.php7.phps.pht to execute arbitrary PHP code on the serv...
ImpressCMS 代码问题漏洞
ImpressCMS is a MySQL-based, modular content management system CMS from ImpressCMS. The system includes modules for press releases, forums and photo albums. A code issue vulnerability exists in ImpressCMS version 1.4.4, which stems from improperly cleaned file upload extensions, and could allow a...
PT-2026-2388
Name of the Vulnerable Software and Affected Versions ImpressCMS version 1.4.4 Description The software contains a file upload issue due to insufficient extension validation. This allows attackers to upload potentially malicious files by bypassing file upload restrictions using alternative file...
CVE-2022-26986
SQL Injection in ImpressCMS 1.4.3 and earlier allows remote attackers to inject into the code in unintended way, this allows an attacker to read and modify the sensitive information from the database used by the application. If misconfigured, an attacker can even upload a malicious web shell to...
EUVD-2012-1009
Malware in sbrugna...
EUVD-2008-5934
Malware in sbrugna...
EUVD-2008-3439
Malware in sbrugna...
EUVD-2008-6330
Malware in sbrugna...
EUVD-2010-4244
Malware in sbrugna...
EUVD-2021-0676
Malware in sbrugna...
EUVD-2012-1010
Malware in sbrugna...
EUVD-2021-0623
Malware in sbrugna...
EUVD-2022-3868
Malicious code in bioql PyPI...
EUVD-2022-2154
Malicious code in bioql PyPI...
EUVD-2022-1718
Malicious code in bioql PyPI...
EUVD-2022-3695
Malicious code in bioql PyPI...
EUVD-2022-1471
Malicious code in bioql PyPI...