Lucene search
K

4 matches found

NVD
NVD
added 2021/08/12 10:15 p.m.20 views

CVE-2021-29377

Pear Admin Think through 2.1.2 has an arbitrary file upload vulnerability that allows attackers to execute arbitrary code remotely. A .php file can be uploaded via admin.php/index/upload because app/common/service/UploadService.php mishandles fileExt...

9.8CVSS0.01603EPSS
Exploits1References1
Prion
Prion
added 2021/08/12 10:15 p.m.12 views

Privilege escalation

Pear Admin Think through 2.1.2 has an arbitrary file upload vulnerability that allows attackers to execute arbitrary code remotely. A .php file can be uploaded via admin.php/index/upload because app/common/service/UploadService.php mishandles fileExt...

7.5CVSS9.7AI score0.01603EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/08/12 9:50 p.m.22 views

CVE-2021-29377

Pear Admin Think through 2.1.2 has an arbitrary file upload vulnerability that allows attackers to execute arbitrary code remotely. A .php file can be uploaded via admin.php/index/upload because app/common/service/UploadService.php mishandles fileExt...

10AI score0.01603EPSS
Exploits1References1
CVE
CVE
added 2021/08/12 9:50 p.m.49 views

CVE-2021-29377

Pear Admin Think through 2.1.2 contains an arbitrary file upload vulnerability that enables remote code execution by uploading a .php file via admin.php/index/upload due to mishandling of fileExt in app/common/service/UploadService.php. This is documented across multiple sources (NVD entry CVE-20...

9.8CVSS9.8AI score0.01603EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder