CVE-2025-70151

code-projects Scholars Tracking System 1.0 allows an authenticated attacker to achieve remote code execution via unrestricted file upload. The endpoints updateprofilepicture.php and uploadpicture.php store uploaded files in a web-accessible uploads/ directory using the original, user-supplied...

CVE-2025-70151

CVE-2025-70151 affects code-projects Scholars Tracking System 1.0. An authenticated attacker can achieve remote code execution via unrestricted file upload: the endpoints update_profile_picture.php and upload_picture.php store uploaded files in web-accessible uploads/ using the original filename ...

CVE-2020-37091

Maian Support Helpdesk 4.3 is affected by a cross-site request forgery (CSRF) vulnerability that allows attackers to create administrative accounts without authentication. Exploitation involves crafting malicious HTML forms to add admin users and upload PHP files via the FAQ attachment system, en...

CVE-2025-44593

Halo prior to 2.20.13 allows bypassing file type detection and uploading malicious files such as .exe and .html files. Specifically, .html files can trigger stored XSS vulnerabilities. This vulnerability is fixed in 2.20.13...

Apache Commons FileUpload 安全漏洞

Apache Commons FileUpload is an Apache USA Foundation package that uploads files to Servlets and Web applications. A security vulnerability exists in Apache Commons FileUpload, which stems from an under-allocation of resources and could lead to a denial of service. The following versions are...

CVE-2022-28865

An issue was discovered in Nokia NetAct 22 through the Site Configuration Tool website section. A malicious user can change a filename of an uploaded file to include JavaScript code, which is then stored and executed by a victim's web browser. The most common mechanism for delivering malicious...

Monstra CMS Security Vulnerability

Monstra CMS is a lightweight PHP-based content management system CMS by Sergey Romanenko, an individual developer in Ukraine. A security vulnerability exists in Monstra CMS version v3.0.4. An attacker can exploit the vulnerability to execute arbitrary code by uploading specially crafted PHP files...

D-Tale server-side request forgery through Web uploads

Impact Users hosting D-Tale publicly can be vulnerable to server-side request forgery SSRF allowing attackers to access files on the server. Patches Users should upgrade to version 3.9.0 where the "Load From the Web" input is turned off by default. You can find out more information on how to turn...

GHSA-7HFX-H3J3-RWQ4 D-Tale server-side request forgery through Web uploads

Impact Users hosting D-Tale publicly can be vulnerable to server-side request forgery SSRF allowing attackers to access files on the server. Patches Users should upgrade to version 3.9.0 where the "Load From the Web" input is turned off by default. You can find out more information on how to turn...

CVE-2024-21642 D-Tale server-side request forgery through Web uploads

D-Tale is a visualizer for Pandas data structures. Users hosting versions D-Tale prior to 3.9.0 publicly can be vulnerable to server-side request forgery SSRF, allowing attackers to access files on the server. Users should upgrade to version 3.9.0, where the Load From the Web input is turned off ...

PT-2023-14618 · Algoo · Algoo Tracim

Name of the Vulnerable Software and Affected Versions: Algoo Tracim versions prior to 4.4.2 Description: The issue allows for XSS via HTML file upload. Recommendations: For versions prior to 4.4.2, update to version 4.4.2 or later to resolve the issue...