Cisco Data Center Network Manager (DCNM) versions 11.1(1) and below suffer from authentication bypass, arbitrary file upload, arbitrary file download, and information disclosure vulnerabilities.
2bd84aa0b859d4eb5b1a69ff91efea19WordPress Satoshi theme version 2.0 suffers from cross site request forgery and remote file upload vulnerabilities.
c35cb6f75567c153b011c7612c626cf3Joomla Attachments component version 3.x suffers from a remote file upload vulnerability.
bd20ed03288d4577ce8abcb06613d91deLabFTW version 1.8.5 suffers from arbitrary file upload and code execution vulnerabilities.
06d4ec4d3b23c885e233b14310048edcThis Metasploit module exploits a remote code execution vulnerability found in GetSimpleCMS versions 3.3.15 and below. An arbitrary file upload (PHPcode for example) vulnerability can be triggered by an authenticated user, however authentication can be bypassed by leaking the cms API key to target the session manager.
6062088ad83896c13ad8c78e57d1baf2GAT-Ship Web Module versions prior to 1.40 suffer from an unrestricted file upload vulnerability.
8c2fb3fc6426dc78470e27e9dc57cdb0This Metasploit module allows the user to run commands on the server with the teacher user privilege. The 'Upload files' section in the 'File Manager' field contains an arbitrary file upload vulnerability.
720c50c8ee708b2b3df793d3b1d82de3PhreeBooks ERP version 5.2.3 suffers from an arbitrary file upload vulnerability.
1606f8d4f075c6c721a684007d4d15cdClassified Ad Lister version 2.0 suffers from an arbitrary file upload vulnerability.
b866bad380e0c3b19bc902c7eb5f1daeThis Metasploit module exploits a file upload vulnerability that allows for remote command execution in Showtime2 module versions 3.6.2 and below in CMS Made Simple (CMSMS). An authenticated user with "Use Showtime2" privilege could exploit the vulnerability. The vulnerability exists in the Showtime2 module, where the class "class.showtime2_image.php" does not ensure that a watermark file has a standard image file extension (GIF, JPG, JPEG, or PNG). Tested on Showtime2 3.6.2, 3.6.1, 3.6.0, 3.5.4, 3.5.3, 3.5.2, 3.5.1, 3.5.0, 3.4.5, 3.4.3, 3.4.2 on CMS Made Simple (CMSMS) 2.2.9.1.
34616f7d15896f8238efb1b0c1d26897SPIP CMS versions 2.x and 3.x suffer from unauthenticated add administrator and arbitrary file upload vulnerabilities.
894150aaed7a06655bcf6e2a4dad0aecCSZ CMS version 1.2.1 suffers from an arbitrary file upload vulnerability.
ad2667b2518dc48fc775c2bce95ae340CMS Made Simple Showtime2 module version 3.6.2 suffers from an authenticated arbitrary file upload vulnerability.
2221652ee89c73f5809f4205dcbfb0d2This Metasploit module exploits a file upload vulnerability Booked 2.7.5. In the "Look and Feel" section of the management panel, you can modify the Logo-Favico-CSS files. Upload sections has file extension control except favicon part. You can upload the file with the extension you want through the Favicon field. The file you upload is written to the main directory of the site under the name "custom-favicon". After you upload the php payload to the main directory, the exploit executes the payload and receives a shell.
d99806184924b3c9ff46a07a219526b9This Metasploit module exploits an arbitrary file upload vulnerability in Feng Office version 3.7.0.5. The application allows unauthenticated users to upload arbitrary files. There is no control of any session. All files are sent under /tmp directory. The .htaccess file under the /tmp directory prevents files with the php, php2, and php3 extensions. This exploit creates the php payload and moves the payload to the main directory via shtml. After moving the php payload to the main directory, the exploit executes payload and receives a shell.
fd4c717a95e850f0b81235df10b31b52Joomla Alberghi component version 2.1.3 suffers from arbitrary file upload and remote SQL injection vulnerabilities.
e9ac9d615c9d64ae523ed189c083e1c9Webiness Inventory version 2.3 suffers from an arbitrary file upload vulnerability.
73c24a7e6e180538e4d37581306f9149Zoho ManageEngine ServiceDesk Plus (SDP) versions prior to 10.0 build 10012 suffer from an arbitrary file upload vulnerability.
0550a15a99693c1fd9ccbf83909a337aUniSharp Laravel File Manager version 2.0.0-alpha7 suffers from an arbitrary file upload vulnerability.
4b844402ebcb3ecb1af226481accbefdWordPress Jssor-Slider plugin version 3.1.24 suffers from cross site request forgery and remote file upload vulnerabilities.
f7eac41409534851aa3d5cda1ce85010TinyMCE JBimages plugin versions 3.x from JustBoilMe suffers from an arbitrary file upload vulnerability.
9b975cf5bb98fdb6ec65718c028992a3Slims CMS Senayan Library Management System version 7.0 suffers from a remote shell upload vulnerability.
d5be7d73783868baa48653a63e6a6a0dRVSiteBuilder RVGlobalSoft CMS version 7.0 suffers from bypass, database disclosure, file download, path disclosure, remote file upload, and remote SQL injection vulnerabilities.
3c019473a8382ff8cf5b15499f6ea3abJoomla RSForm component version 1.5 suffers from database disclosure and remote SQL injection vulnerabilities.
e2524bc32be163c37b6de12a3f46091cBlueimp jQuery File Upload versions 9.22.0 and below suffer from a remote file upload vulnerability.
e2fcb7c12aedd4cbe1a64e468bb035e4
© 2019 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed