Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/14 11:19 p.m.7 views

CVE-2022-50916

e107 CMS version 3.2.1 contains a file upload vulnerability that allows authenticated administrators to override server files through the Media Manager import functionality. Attackers can exploit the upload mechanism by manipulating the upload URL parameter to overwrite existing files like top.ph...

8.7CVSS6.8AI score0.00804EPSS
Exploits1References1
OSV
OSV
added 2026/01/13 11:15 p.m.5 views

CVE-2022-50916

e107 CMS version 3.2.1 contains a file upload vulnerability that allows authenticated administrators to override server files through the Media Manager import functionality. Attackers can exploit the upload mechanism by manipulating the upload URL parameter to overwrite existing files like top.ph...

7.2CVSS5.8AI score0.00804EPSS
Exploits1References4
NVD
NVD
added 2026/01/13 11:15 p.m.6 views

CVE-2022-50907

e107 CMS version 3.2.1 contains a file upload vulnerability that allows authenticated administrative users to bypass upload restrictions and execute PHP files. Attackers can upload malicious PHP files to parent directories by manipulating the upload URL parameter, enabling remote code execution...

8.6CVSS0.01049EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/01/13 10:51 p.m.25 views

CVE-2022-50907 e107 CMS v3.2.1 - Admin Upload Restriction Bypass + RCE

e107 CMS version 3.2.1 contains a file upload vulnerability that allows authenticated administrative users to bypass upload restrictions and execute PHP files. Attackers can upload malicious PHP files to parent directories by manipulating the upload URL parameter, enabling remote code execution...

8.6CVSS0.01049EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.6 views

PT-2026-2392

Name of the Vulnerable Software and Affected Versions e107 CMS version 3.2.1 Description The application contains a file upload issue that allows administrators with authentication to overwrite server files using the Media Manager import functionality. Specifically, attackers can manipulate the...

8.8CVSS6.9AI score0.00804EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.12 views

PT-2026-2383

Name of the Vulnerable Software and Affected Versions e107 CMS version 3.2.1 Description e107 CMS version 3.2.1 has a file upload issue. Authenticated administrative users can bypass upload restrictions and execute PHP files. An attacker can upload malicious PHP files to parent directories by...

8.8CVSS8.2AI score0.01049EPSS
Exploits1References6
Rows per page
Query Builder