CVE-2023-51590

Voltronic Power ViewPower Pro UpLoadAction Unrestricted File Upload Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Voltronic Power ViewPower Pro. Authentication is not required to exploit this vulnerability. T...

CVE-2023-51590 Voltronic Power ViewPower Pro UpLoadAction Unrestricted File Upload Remote Code Execution Vulnerability

Voltronic Power ViewPower Pro UpLoadAction Unrestricted File Upload Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Voltronic Power ViewPower Pro. Authentication is not required to exploit this vulnerability. T...

CVE-2023-51590

CVE-2023-51590 affects Voltronic Power ViewPower Pro. The vulnerability is an unrestricted file upload in the UpLoadAction class, caused by insufficient validation of user-supplied data. This allows remote attackers to upload arbitrary files and execute code with LOCAL SERVICE privileges, without...

CVE-2023-51590 Voltronic Power ViewPower Pro UpLoadAction Unrestricted File Upload Remote Code Execution Vulnerability

Voltronic Power ViewPower Pro UpLoadAction Unrestricted File Upload Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Voltronic Power ViewPower Pro. Authentication is not required to exploit this vulnerability. T...

(0Day) Voltronic Power ViewPower Pro UpLoadAction Unrestricted File Upload Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Voltronic Power ViewPower Pro. Authentication is not required to exploit this vulnerability. The specific flaw exists within the UpLoadAction class. The issue results from the lack of proper validati...

CVE-2023-40980

File Upload vulnerability in DWSurvey DWSurvey-OSS v.3.2.0 and before allows a remote attacker to execute arbitrary code via the saveimage method and savveFile in the action/UploadAction.java file...

CVE-2023-40980

File Upload vulnerability in DWSurvey DWSurvey-OSS v.3.2.0 and before allows a remote attacker to execute arbitrary code via the saveimage method and savveFile in the action/UploadAction.java file...

Schneider Electric APC Easy UPS Online UpLoadAction Unrestricted File Upload Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric APC Easy UPS Online. Authentication is not required to exploit this vulnerability. The specific flaw exists within the UpLoadAction class. When parsing the filename parameter, the...

PT-2022-8023 · Unknown · Vova07 Yii2 Fileapi Widget

Name of the Vulnerable Software and Affected Versions: vova07 Yii2 FileAPI Widget versions up to 0.1.8 Description: A vulnerability was found in the vova07 Yii2 FileAPI Widget, which has been declared as problematic. The issue affects the run function of the file actions/UploadAction.php. The...

Seat Reservation System Arbitrary File Upload (CVE-2020-25763)

An arbitrary file upload vulnerability exists in Seat Reservation System. The vulnerability is due to improper validation of user supplied data in UploadAction. Successful exploitation could result in uploading potentially dangerous file which may lead to arbitrary code execution...

Zoho ManageEngine Applications Manager Arbitrary File Upload (CVE-2020-14008)

An arbitrary file upload vulnerability exists in Zoho ManageEngine Applications Manager. The vulnerability is due to improper validation of user supplied data in UploadAction. Successful exploitation could result in uploading potentially dangerous file which may lead to arbitrary code execution...