6 matches found
Simple Chatting System Arbitrary File Upload Vulnerability
Simple Chatting System is a PHP-based online chatting application. An arbitrary file upload vulnerability exists in Simple Chatting System version 1.0. The vulnerability can be exploited to upload arbitrary files via the view/myprofile.php file...
CVE-2017-17593
Simple Chatting System 1.0 allows Arbitrary File Upload via view/myprofile.php, which places files under uploads/...
CVE-2017-17593
Simple Chatting System 1.0 allows Arbitrary File Upload via view/myprofile.php, which places files under uploads/...
Design/Logic Flaw
Simple Chatting System 1.0 allows Arbitrary File Upload via view/myprofile.php, which places files under uploads/...
CVE-2017-17593
Simple Chatting System 1.0 allows Arbitrary File Upload via view/myprofile.php, which places files under uploads/...
CVE-2017-17593
CVE-2017-17593 affects Simple Chatting System 1.0 (PHP-based). The vulnerability is an arbitrary file upload via the endpoint view/my_profile.php, which allows uploaded files to be placed under uploads/. Root cause: insufficient input validation on file uploads (as described across CNVD/NVD recor...