Total
2602 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-6027 | 1 Codesys | 1 Web Server | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
An Arbitrary File Upload issue was discovered in 3S-Smart Software Solutions GmbH CODESYS Web Server. The following versions of CODESYS Web Server, part of the CODESYS WebVisu web browser visualization software, are affected: CODESYS Web Server Versions 2.3 and prior. A specially crafted web server request may allow the upload of arbitrary files (with a dangerous type) to the CODESYS Web Server without authorization which may allow remote code execution. | |||||
CVE-2017-8080 | 1 Atlassian | 1 Hipchat Server | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
Atlassian Hipchat Server before 2.2.4 allows remote authenticated users with user level privileges to execute arbitrary code via vectors involving image uploads. | |||||
CVE-2016-7902 | 1 Dotclear | 1 Dotclear | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
Unrestricted file upload vulnerability in the fileUnzip->unzip method in Dotclear before 2.10.3 allows remote authenticated users with permissions to manage media items to execute arbitrary code by uploading a ZIP file containing a file with a crafted extension, as demonstrated by .php.txt or .php%20. | |||||
CVE-2016-6104 | 1 Ibm | 1 Security Key Lifecycle Manager | 2024-02-28 | 6.5 MEDIUM | 7.2 HIGH |
IBM Tivoli Key Lifecycle Manager 2.5, and 2.6 could allow a remote attacker to upload arbitrary files, caused by the improper validation of file extensions, which could allow the attacker to execute arbitrary code on the vulnerable system. | |||||
CVE-2017-9080 | 1 Playsms | 1 Playsms | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
PlaySMS 1.4 allows remote code execution because PHP code in the name of an uploaded .php file is executed. sendfromfile.php has a combination of Unrestricted File Upload and Code Injection. | |||||
CVE-2015-4455 | 1 Aviary Image Editor Add-on For Gravity Forms Project | 1 Aviary Image Editor Add-on For Gravity Forms | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
Unrestricted file upload vulnerability in includes/upload.php in the Aviary Image Editor Add-on For Gravity Forms plugin 3.0 beta for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in wp-content/uploads/gform_aviary. | |||||
CVE-2017-5520 | 1 Metalgenix | 1 Genixcms | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
The media rename feature in GeniXCMS through 0.0.8 does not consider alternative PHP file extensions when checking uploaded files for PHP content, which enables a user to rename and execute files with the `.php6`, `.php7` and `.phtml` extensions. | |||||
CVE-2017-7989 | 1 Joomla | 1 Joomla\! | 2024-02-28 | 4.0 MEDIUM | 6.5 MEDIUM |
In Joomla! 3.2.0 through 3.6.5 (fixed in 3.7.0), inadequate MIME type checks allowed low-privilege users to upload swf files even if they were explicitly forbidden. | |||||
CVE-2017-7695 | 1 Bigtreecms | 1 Bigtree Cms | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
Unrestricted File Upload exists in BigTree CMS before 4.2.17: if an attacker uploads an 'xxx.php[space]' file, they could bypass a safety check and execute any code. | |||||
CVE-2017-6104 | 1 Zen Mobile App Native Project | 1 Zen Mobile App Native | 2024-02-28 | 5.0 MEDIUM | 7.5 HIGH |
Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0. | |||||
CVE-2015-3884 | 1 Qdpm | 1 Qdpm | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
Unrestricted file upload vulnerability in the (1) myAccount, (2) projects, (3) tasks, (4) tickets, (5) discussions, (6) reports, and (7) scheduler pages in qdPM 8.3 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/attachments/ or uploads/users/. | |||||
CVE-2016-1713 | 1 Vtiger | 1 Vtiger Crm | 2024-02-28 | 8.5 HIGH | 7.3 HIGH |
Unrestricted file upload vulnerability in the Settings_Vtiger_CompanyDetailsSave_Action class in modules/Settings/Vtiger/actions/CompanyDetailsSave.php in Vtiger CRM 6.4.0 allows remote authenticated users to execute arbitrary code by uploading a crafted image file with an executable extension, then accessing it via a direct request to the file in test/logo/. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-6000. | |||||
CVE-2017-9101 | 1 Playsms | 1 Playsms | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
import.php (aka the Phonebook import feature) in PlaySMS 1.4 allows remote code execution via vectors involving the User-Agent HTTP header and PHP code in the name of a file. | |||||
CVE-2017-7281 | 1 Unitrends | 1 Enterprise Backup | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
An issue was discovered in Unitrends Enterprise Backup before 9.1.2. A lack of sanitization of user input in the createReportName and saveReport functions in recoveryconsole/bpl/reports.php allows for an authenticated user to create a randomly named file on disk with a user-controlled extension, contents, and path, leading to remote code execution, aka Unrestricted File Upload. | |||||
CVE-2016-6124 | 1 Ibm | 1 Kenexa Lms On Cloud | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 could allow a remote attacker to upload arbitrary files, which could allow the attacker to execute arbitrary code on the vulnerable server. | |||||
CVE-2017-9069 | 1 Modx | 1 Modx Revolution | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
In MODX Revolution before 2.5.7, a user with file upload permissions is able to execute arbitrary code by uploading a file with the name .htaccess. | |||||
CVE-2016-2914 | 1 Ibm | 1 Rational Publishing Engine | 2024-02-28 | 5.5 MEDIUM | 5.4 MEDIUM |
Unrestricted file upload vulnerability in the Document Builder in IBM Rational Publishing Engine (aka RPENG) 2.0.1 before ifix002 allows remote authenticated users to execute arbitrary code by specifying an unexpected file extension. | |||||
CVE-2016-7095 | 1 Exponentcms | 1 Exponent Cms | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
Exponent CMS before 2.3.9 is vulnerable to an attacker uploading a malicious script file using redirection to place the script in an unprotected folder, one allowing script execution. | |||||
CVE-2015-1000000 | 1 Mailcwp Project | 1 Mailcwp | 2024-02-28 | 5.0 MEDIUM | 9.8 CRITICAL |
Remote file upload vulnerability in mailcwp v1.99 wordpress plugin | |||||
CVE-2015-1000001 | 1 Fast-image-adder Project | 1 Fast-image-adder | 2024-02-28 | 5.0 MEDIUM | 9.8 CRITICAL |
Remote file upload vulnerability in fast-image-adder v1.1 Wordpress plugin |