Lucene search
K

5 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/25 3:41 a.m.7 views

CVE-2026-27636

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.206, FreeScout's file upload restriction list in app/Misc/Helper.php does not include .htaccess or .user.ini files. On Apache servers with AllowOverride All a common configuration, an...

9.8CVSS5.7AI score0.02121EPSS
Exploits4References5Affected Software1
OSV
OSV
added 2026/02/25 3:41 a.m.3 views

CVE-2026-27636 FreeScout: Missing .htaccess in Restricted File Extensions Allows Remote Code Execution on Apache

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.206, FreeScout's file upload restriction list in app/Misc/Helper.php does not include .htaccess or .user.ini files. On Apache servers with AllowOverride All a common configuration, an...

8.8CVSS5.9AI score0.02121EPSS
Exploits3References5
EUVD
EUVD
added 2026/02/25 3:41 a.m.8 views

EUVD-2026-8612

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.206, FreeScout's file upload restriction list in app/Misc/Helper.php does not include .htaccess or .user.ini files. On Apache servers with AllowOverride All a common configuration, an...

9.8CVSS5.7AI score0.02121EPSS
Exploits4References3
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.6 views

PT-2026-21853

Name of the Vulnerable Software and Affected Versions FreeScout versions prior to 1.8.206 Description FreeScout, a PHP-based help desk and shared inbox application built on the Laravel framework, contains a flaw in its file upload restrictions. Prior to version 1.8.206, the application does not...

8.8CVSS5.7AI score0.02121EPSS
Exploits3References30
ATTACKERKB
ATTACKERKB
added 2022/07/15 12:15 p.m.2 views

CVE-2021-36461

An Arbitrary File Upload vulnerability exists in Microweber 1.1.3 that allows attackers to getshell via the Settings Upload Picture section by uploading pictures with malicious code, user.ini...

8.8CVSS7.2AI score0.00875EPSS
Exploits1References2
Rows per page
Query Builder