Jtbc Php@3.0.1.6 Security Vulnerabilities and Issues — Jtbc Php@3.0.1.6 CVE List

Lucene search

JtbcJtbc Php3.0.1.6

3 matches found

CVE•added 2018/10/01 8:29 a.m.•35 views

CVE-2018-17837

An issue was discovered in JTBC(PHP) 3.0.1.6. Arbitrary file deletion is possible via a /console/file/manage.php?type=action&action=delete&path=c%3A%2F substring.

7.5CVSS7.4AI score0.00523EPSS

CVE•added 2018/10/01 8:29 a.m.•34 views

CVE-2018-17836

An issue was discovered in JTBC(PHP) 3.0.1.6. It allows remote attackers to execute arbitrary PHP code by using a /console/file/manage.php?type=action&action=addfile&path=..%2F substring to upload, in conjunction with a multipart/form-data PHP payload.

8.8CVSS8.9AI score0.01189EPSS

CVE•added 2018/10/01 8:29 a.m.•33 views

CVE-2018-17838

An issue was discovered in JTBC(PHP) 3.0.1.6. Arbitrary file read operations are possible via a /console/#/console/file/manage.php?type=list&path=c:/ substring.

7.5CVSS7.3AI score0.00419EPSS