2 matches found
CVE-2021-43564
The CVE-2021-43564 entry concerns the TYPO3 extension Job Fair (hov/jobfair). The vulnerability arises because the extension does not protect or obfuscate uploaded filenames, enabling an unauthenticated user to access sensitive data by guessing the filename (e.g., uploads/tx_jobfair/cv.pdf). Affe...
HelpDeskZ 1.0.2 - Arbitrary File Upload
HelpDeskZ 1.0.2 - Arbitrary File Upload ''' Updated Exploit Provided by Drew Griess Exploit Title HelpDeskZ = v1.0.2 - Unauthenticated Shell Upload Google Dork intextHelp Desk Software by HelpDeskZ Date 2016-08-26 Exploit Author Lars Morgenroth - @krankoPwnz Vendor Homepage httpwww.helpdeskz.com...