Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-18267

Malware in sbrugna...

6.1CVSS6.3AI score0.00632EPSS
Exploits0References3
Prion
Prion
added 2017/10/02 1:29 a.m.16 views

Code injection

lib.php in PivotX 2.3.11 does not properly block uploads of dangerous file types by admin users, which allows remote PHP code execution via an upload of a .php file...

6.5CVSS7.4AI score0.01331EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/10/01 3:0 p.m.15 views

CVE-2017-14958

lib.php in PivotX 2.3.11 does not properly block uploads of dangerous file types by admin users, which allows remote PHP code execution via an upload of a .php file...

7.4AI score0.01331EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/06/06 2:0 p.m.19 views

CVE-2017-9332

The smartyself function in modules/modulesmarty.php in PivotX 2.3.11 mishandles the URI, allowing XSS via vectors involving quotes in the self Smarty tag...

5.9AI score0.00632EPSS
Exploits0References1
NVD
NVD
added 2017/04/07 4:59 a.m.15 views

CVE-2017-7570

PivotX 2.3.11 allows remote authenticated Advanced users to execute arbitrary PHP code by performing an upload with a safe file extension such as .jpg and then invoking the duplicate function to change to the .php extension...

8.8CVSS8.8AI score0.01452EPSS
Exploits1References1
seebug.org
seebug.org
added 2016/04/06 12:0 a.m.14 views

PivotX 2.3.11 - Directory Traversal

No description provided by source...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2016/03/18 12:0 a.m.37 views

PivotX 2.3.11 Directory Traversal

Security Advisory - Curesec Research Team 1. Introduction Affected Product: PivotX 2.3.11 Fixed in: not fixed Fixed Version Link: n/a Vendor Website: http://pivotx.net/ Vulnerability Type: Directory Traversal Remote Exploitable: Yes Reported to vendor: 01/20/2016 Disclosed to public: 03/15/2016...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2016/03/18 12:0 a.m.34 views

PivotX 2.3.11 Cross Site Scripting

Security Advisory - Curesec Research Team 1. Introduction Affected Product: PivotX 2.3.11 Fixed in: not fixed Fixed Version Link: n/a Vendor Website: http://pivotx.net/ Vulnerability Type: Reflected XSS Remote Exploitable: Yes Reported to vendor: 01/20/2016 Disclosed to public: 03/15/2016 Release...

Exploits0
Rows per page
Query Builder