2 matches found
CVE-2018-9206
CVE-2018-9206 is an unauthenticated arbitrary file upload vulnerability in Blueimp jQuery File Upload, affecting versions up to and including 9.22.0. The initial description and multiple connected sources confirm an arbitrary upload weakness in the plugin’s file-upload handling, which has been de...
CVE-2014-8739
CVE-2014-8739 : Unrestricted file upload in the jQuery File Upload Plugin 6.4.4, used by Creative Solutions Sexy Contact Form (WordPress <= 1.0.0, Joomla! <= 2.0.1), allows remote attackers to upload a PHP file via UploadHandler.php and execute code by requesting the file in the installed f...