4 matches found
CVE-2015-7571
Unrestricted file upload vulnerability in Yeager CMS 1.2.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension...
Unrestricted file upload
Unrestricted file upload vulnerability in Yeager CMS 1.2.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension...
CVE-2015-7571
Vulnerability CVE-2015-7571 affects Yeager CMS 1.2.1. Unrestricted file upload can lead to remote code execution by uploading an executable file; fixed version is listed as 1.3 in vulnerability references. The available sources describe the issue and indicate upgrade/patch as remediation, but exp...
Server side request forgery (ssrf)
Multiple server-side request forgery SSRF vulnerabilities in Yeager CMS 1.2.1 allow remote attackers to trigger outbound requests and enumerate open ports via the dbhost parameter to libs/org/adodblite/tests/testadodblite.php, libs/org/adodblite/tests/testdatadictionary.php, or...