24 matches found
CVE-2021-24363
The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin before 1.5.75 did not ensure that uploaded files are kept inside its uploads folder, allowing high privilege users to put images/SVG anywhere in the filesystem via a path traversal vector...
PT-2020-20568 · Silverstripe · Silverstripe
Name of the Vulnerable Software and Affected Versions: SilverStripe versions prior to 4.6 Description: The issue affects files uploaded via Forms to folders migrated from Silverstripe CMS 3.x, where they may be put in the default "/Uploads" folder instead of the intended location. This impacts...
GetSimpleCMS 3.2.1 arbitrary file upload-vulnerability warning-the black bar safety net
Title: GetSimpleCMS Version 3.2.1 Arbitrary File Upload Vulnerability Download address: http://code.google.com/p/get-simple-cms/ Affected version: 3.2.1 Tested: ubuntu 13.4 Author: Ahmed Elhady Mohamed Overview: - GetSimpleCMS Version 3.2.1 suffers from arbitrary file upload vulnerability which...
WordPress Front End Upload v0.5.4.4 Arbitrary PHP File Upload
Exploit for php platform in category web applications Exploit Title: WordPress Front End Upload v0.5.4.4 Arbitrary PHP File Upload Vulnerability Date: 7/23/12 Exploit Author: Chris Kellum Vendor Homepage: http://mondaybynoon.com/ Software Link:...