Lucene search
K

4 matches found

OSV
OSV
added 2022/02/09 4:15 p.m.8 views

CVE-2021-44911

XE before 1.11.6 is vulnerable to Unrestricted file upload via modules/menu/menu.admin.controller.php. When uploading the Mouse over button and When selected button, there is no restriction on the file suffix, which leads to any file uploading to the files directory. Since .htaccess only restrict...

5.4CVSS6AI score
Exploits0References1
NVD
NVD
added 2022/02/09 4:15 p.m.8 views

CVE-2021-44911

XE before 1.11.6 is vulnerable to Unrestricted file upload via modules/menu/menu.admin.controller.php. When uploading the Mouse over button and When selected button, there is no restriction on the file suffix, which leads to any file uploading to the files directory. Since .htaccess only restrict...

5.4CVSS0.00569EPSS
Exploits1References1
Prion
Prion
added 2022/02/09 4:15 p.m.12 views

Unrestricted file upload

XE before 1.11.6 is vulnerable to Unrestricted file upload via modules/menu/menu.admin.controller.php. When uploading the Mouse over button and When selected button, there is no restriction on the file suffix, which leads to any file uploading to the files directory. Since .htaccess only restrict...

3.5CVSS5.4AI score0.00569EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/09 3:40 p.m.18 views

CVE-2021-44911

XE before 1.11.6 is vulnerable to Unrestricted file upload via modules/menu/menu.admin.controller.php. When uploading the Mouse over button and When selected button, there is no restriction on the file suffix, which leads to any file uploading to the files directory. Since .htaccess only restrict...

5.6AI score0.00569EPSS
Exploits1References1
Rows per page
Query Builder