CVE-2021-47936 OpenCATS 0.9.4 Remote Code Execution via Resume Upload

OpenCATS 0.9.4 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary commands by uploading malicious PHP files disguised as resume attachments. Attackers can upload PHP payloads through the careers job application endpoint and execute system...

PT-2023-35500 · Git-Annex · Git-Annex

Name of the Vulnerable Software and Affected Versions: git-annex versions prior to 6.20160419 Description: A bug in git-annex exposed the checksum of annexed files to encrypted special remotes, which should not have access to this information. This issue occurred when resuming uploads to the...

Simplejobscript.com SJS controllers/page_apply.php script upload vulnerability

Simplejobscript.com SJS is a WEB based recruitment application service program. A security vulnerability exists in Simplejobscript.com SJS controllers/pageapply.php at the upload of resumes, which can be exploited by remote attackers to submit a special PHP script request to upload and execute...