Lucene search
K

10 matches found

NVD
NVD
added 2026/06/25 4:16 p.m.10 views

CVE-2026-48945

The K2 article gallery upload path accepts a zip/tar archive, extracts it under /media/k2/galleries//, and only renames image files gif/jpg/jpeg/png/webp to safe names — non-image files including .php are extracted as-is and remain executable via direct HTTP access...

5.3CVSS0.00197EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/25 3:26 p.m.7 views

EUVD-2026-39447

The K2 article gallery upload path accepts a zip/tar archive, extracts it under /media/k2/galleries//, and only renames image files gif/jpg/jpeg/png/webp to safe names — non-image files including .php are extracted as-is and remain executable via direct HTTP access...

5.3CVSS5.9AI score0.00197EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/25 3:26 p.m.4 views

CVE-2026-48945

The K2 article gallery upload path accepts a zip/tar archive, extracts it under /media/k2/galleries//, and only renames image files gif/jpg/jpeg/png/webp to safe names — non-image files including .php are extracted as-is and remain executable via direct HTTP access...

5.3CVSS5.9AI score0.00197EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/06/25 3:26 p.m.13 views

CVE-2026-48945

The CVE describes a vulnerability in the K2 Joomla extension (getk2.com) where the article gallery upload path accepts a zip/tar archive and extracts it to /media/k2/galleries//. The extractor renames image files (gif/jpg/jpeg/png/webp) to safe names, but non-image files (including .php) are extr...

5.3CVSS5.9AI score0.00197EPSS
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2026/01/28 12:0 a.m.152 views

📄 Django Summernote 0.8.20.0 Unrestricted File Upload Scanner

This Metasploit Auxiliary Scanner module detects unrestricted file upload vulnerabilities in django-summernote. It targets misconfigurations where image validation depends on the Pillow library and allows non-image files to be uploaded when Pillow is missing. The module safely scans common upload...

5.9AI score
Exploits0
OSV
OSV
added 2022/09/27 11:15 p.m.4 views

CVE-2022-37346

EC-CUBE plugin 'Product Image Bulk Upload Plugin' 1.0.0 and 4.1.0 contains an insufficient verification vulnerability when uploading files. Exploiting this vulnerability allows a remote unauthenticated attacker to upload arbitrary files other than image files. If a user with an administrative...

9.8CVSS5.9AI score0.00956EPSS
Exploits0References2
OSV
OSV
added 2017/07/06 4:29 p.m.5 views

CVE-2017-10973

In FineCMS before 2017-07-06, application/lib/ajax/getimagedata.php has SSRF, related to requests for non-image files with a modified HTTP Host header...

6.5CVSS5.8AI score0.00832EPSS
Exploits0References2
Prion
Prion
added 2017/07/06 4:29 p.m.20 views

Server side request forgery (ssrf)

In FineCMS before 2017-07-06, application/lib/ajax/getimagedata.php has SSRF, related to requests for non-image files with a modified HTTP Host header...

4.3CVSS6.5AI score0.00832EPSS
Exploits0References2Affected Software1
exploitpack
exploitpack
added 2008/01/24 12:0 a.m.29 views

ImageShack Toolbar 4.5.7 - FileUploader Class InsecureMethod

ImageShack Toolbar 4.5.7 - FileUploader Class InsecureMethod suntzu.BuildSlideShow "file:///c:\xpwallpaperglass.jpg","Big",1,"uhuhinterestingprivatethings","Fade","White" suntzu.BuildSlideShow "file:///c:\boot.ini", "Big",1,"uhuhinterestingprivatethings...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2004/07/17 12:0 a.m.20 views

Gallery 1.4.4 - Remote Server-Side Script Execution

source: https://www.securityfocus.com/bid/10968/info A vulnerability is reported to exist in Gallery that may allow a remote attacker to execute malicious scripts on a vulnerable system. This issue is a design error that occurs due to the 'settimelimit' function. The issue presents itself becuase...

7.4AI score
Exploits0
Rows per page
Query Builder