164 matches found
CVE-2017-17976
In Utilities.php in Perfex CRM 1.9.7, Unrestricted file upload can lead to remote code execution...
Unrestricted file upload
In Utilities.php in Perfex CRM 1.9.7, Unrestricted file upload can lead to remote code execution...
CVE-2017-17976
CVE-2017-17976 affects Perfex CRM 1.9.7 and stems from an unrestricted file upload in the utilities.php workflow, enabling remote code execution. Public sources confirm an arbitrary file upload path via the elfinder feature (elfinder_init) and mkfile, demonstrated by reports referencing shell.php...
CVE-2017-17976
In Utilities.php in Perfex CRM 1.9.7, Unrestricted file upload can lead to remote code execution...