CVE-2014-1214 - Remote Code Execution in Projoom NovaSFH Plugin

Vulnerability title: Remote Code Execution in Projoom NovaSFH Plugin CVE: CVE-2014-1214 Vendor: Projoom Product: NovaSFH Plugin Version: 3.0.3 Reported by: Yuri Kramarz Details: The PHP executable which is responsible for handling file upload functionality allows arbitrary files to be uploaded to...

Joomla! Component Projoom NovaSFH 3.0.2 - upload.php Arbitrary File Upload

Joomla! Component Projoom NovaSFH 3.0.2 - upload.php Arbitrary File Upload source: https://www.securityfocus.com/bid/65438/info Projoom NovaSFH plugin for Joomla! is prone to an arbitrary-file-upload vulnerability because it fails to adequately sanitize user-supplied input. An attacker may levera...

Joomla! Component Projoom NovaSFH 3.0.2 - 'upload.php' Arbitrary File Upload

source: https://www.securityfocus.com/bid/65438/info Projoom NovaSFH plugin for Joomla! is prone to an arbitrary-file-upload vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage this issue to upload arbitrary files; this can result in arbitrary code...