3 matches found
WordPress Increase upload file size & Maximum Execution Time limit Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)
Software Increase upload file size & Maximum Execution Time limit Type Plugin Vulnerable versions = 2.0 Fixed in 3.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9611 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...
Cisco HyperFlex HX 未授权文件上传漏洞(CVE-2021-1499 )
Technical Analysis CVE-2021-1499 Arbitrary file upload RCE implied in the /upload endpoint. Patch --- unpatched/springpath.conf 2021-05-17 19:06:17.000000000 -0500 +++ patched/springpath.conf 2021-05-17 19:06:23.000000000 -0500 @@ -36,14 +36,7 @@ include uwsgiparams; - location /crossdomain.xml -...
Unrestricted file upload
SAP NetWeaver Knowledge Management, versions - 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to upload a malicious file and also to access, modify or make unavailable existing files but the impact is limited to the files themselves and is restricted by other policies such as access...