CVE-2023-24269

An arbitrary file upload vulnerability in the plugin upload function of Textpattern v4.8.8 allows attackers to execute arbitrary code via a crafted Zip file...

Design/Logic Flaw

An arbitrary file upload vulnerability in the plugin upload function of Textpattern v4.8.8 allows attackers to execute arbitrary code via a crafted Zip file...

Textpattern 代码问题漏洞

Textpattern CMS is a Php-based content management system from the Textpattern team. An arbitrary file upload vulnerability exists in Textpattern CMS version v4.8.8. The vulnerability stems from the application's lack of effective validation of uploaded files. An attacker can exploit the...

PT-2023-19504 · Unknown · Textpattern

Name of the Vulnerable Software and Affected Versions: Textpattern version 4.8.8 Description: An arbitrary file upload vulnerability in the plugin upload function allows attackers to execute arbitrary code via a crafted Zip file. Recommendations: For Textpattern version 4.8.8, at the moment, ther...

CVE-2023-24269

An arbitrary file upload vulnerability in the plugin upload function of Textpattern v4.8.8 allows attackers to execute arbitrary code via a crafted Zip file...

CVE-2023-24269

Textpattern CMS v4.8.8 is affected by an arbitrary file upload vulnerability in the plugin upload function that enables remote code execution via a crafted Zip file. Root cause: insufficient validation of uploaded archives in the plugin upload workflow. CVE-2023-24269 is associated with this issu...

CVE-2023-24269

An arbitrary file upload vulnerability in the plugin upload function of Textpattern v4.8.8 allows attackers to execute arbitrary code via a crafted Zip file...

Textpattern CMS <= 4.8.8 Multiple Arbitrary File Upload Vulnerabilities

Textpattern CMS is prone to multiple arbitrary file upload vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2023-26852

An arbitrary file upload vulnerability in the upload plugin of Textpattern v4.8.8 and below allows attackers to execute arbitrary code by uploading a crafted PHP file...

CVE-2023-26852

An arbitrary file upload vulnerability in the upload plugin of Textpattern v4.8.8 and below allows attackers to execute arbitrary code by uploading a crafted PHP file...

PT-2023-20824 · Unknown · Textpattern

Name of the Vulnerable Software and Affected Versions: Textpattern versions 4.8.8 and below Description: An arbitrary file upload vulnerability in the upload plugin allows attackers to execute arbitrary code by uploading a crafted PHP file. Recommendations: For Textpattern versions 4.8.8 and belo...

Textpattern CMS 代码问题漏洞

Textpattern CMS is a Php-based content management system from the Textpattern team. A security vulnerability exists in Textpattern CMS version v4.8.8 and earlier versions. An attacker can exploit the vulnerability to execute arbitrary code by uploading specially crafted PHP files...

CVE-2023-26852

The CVE concerns Textpattern CMS versions 4.8.8 and earlier, where the upload plugin allows uploading crafted PHP files, enabling arbitrary code execution. The underlying issue is an arbitrary file upload vulnerability in the upload component, yielding potential remote code execution with network...

CVE-2023-26852

An arbitrary file upload vulnerability in the upload plugin of Textpattern v4.8.8 and below allows attackers to execute arbitrary code by uploading a crafted PHP file...

CVE-2023-26852

An arbitrary file upload vulnerability in the upload plugin of Textpattern v4.8.8 and below allows attackers to execute arbitrary code by uploading a crafted PHP file...

Textpattern 4.8.8 Remote Code Execution

Exploit Title: Textpattern 4.8.8 - Remote Code Execution RCE Authenticated Exploit Author: Alperen Ergel Contact: @alpernae IG/TW Software Homepage: https://textpattern.com/ Version : 4.8.8 Tested on: windows 11 xammp | Kali linux Category: WebApp Google Dork: intext:"Published with Textpattern...

Textpattern 4.8.8 - Remote Code Execution (Authenticated) Vulnerability

Exploit Title: Textpattern 4.8.8 - Remote Code Execution RCE Authenticated Exploit Author: Alperen Ergel Contact: @alpernae IG/TW Software Homepage: https://textpattern.com/ Version : 4.8.8 Tested on: windows 11 xammp | Kali linux Category: WebApp Google Dork: intext:"Published with Textpattern...

Textpattern 4.8.8 - Remote Code Execution (RCE) (Authenticated)

Exploit Title: Textpattern 4.8.8 - Remote Code Execution RCE Authenticated Exploit Author: Alperen Ergel Contact: @alpernae IG/TW Software Homepage: https://textpattern.com/ Version : 4.8.8 Tested on: windows 11 xammp | Kali linux Category: WebApp Google Dork: intext:"Published with Textpattern...

Textpattern 4.8.8 - Remote Code Execution (Authenticated) Exploit

Exploit Title: Textpattern 4.8.8 - Remote Code Execution RCE Authenticated Exploit Author: Alperen Ergel Contact: @alpernae IG/TW Software Homepage: https://textpattern.com/ Version : 4.8.8 Tested on: windows 11 xammp | Kali linux Category: WebApp Google Dork: intext:"Published with Textpattern...

Textpattern CMS < 4.8.8 Cookie Vulnerability

Textpattern CMS is missing the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or...