Joomla JCE component versions 2.6.7.1 through 2.6.33 suffer from an arbitrary file upload vulnerability.
5c23c1abd98f1e33707301cc61401134Miss Marple Enterprise Edition versions prior to 2.0 suffer from arbitrary file upload, hardcoded AES key, validation bypass, and other vulnerabilities.
5fc5d23b1a1b5d01c8a5758c57afca63Alive Parish version 2.0.4 suffers from remote file upload and remote SQL injection vulnerabilities.
d2b89a0fba49d3310072b02564c19b23Cisco Prime Infrastructure (CPI) contains two basic flaws that when exploited allow an unauthenticated attacker to achieve remote code execution. The first flaw is a file upload vulnerability that allows the attacker to upload and execute files as the Apache Tomcat user; the second is a privilege escalation to root by bypassing execution restrictions in a SUID binary. This Metasploit module exploits these vulnerabilities to achieve unauthenticated remote code execution as root on the CPI default installation. This Metasploit module has been tested with CPI 3.2.0.0.258 and 3.4.0.0.348. Earlier and later versions might also be affected, although 3.4.0.0.348 is the latest at the time of writing. The file upload vulnerability should have been fixed in versions 3.4.1 and 3.3.1 Update 02.
2c9170145359581c4c8d1c13f564bce3This Metasploit module exploits an arbitrary file upload in the sample PHP upload handler for blueimp's jQuery File Upload widget in versions 9.22.0 and below. Due to a default configuration in Apache 2.3.9+, the widget's .htaccess file may be disabled, enabling exploitation of this vulnerability. This vulnerability has been exploited in the wild since at least 2015 and was publicly disclosed to the vendor in 2018. It has been present since the .htaccess change in Apache 2.3.9. This Metasploit module provides a generic exploit against the jQuery widget.
dc66674939d313842bacc7cddcbdd16cSchool Event Management System version 1.0 suffers from a remote shell upload vulnerability.
22cc8d03383f452cd7bd0eb86aa46ab6MPS Box version 0.1.8.0 suffers from an arbitrary file upload vulnerability.
ccab64508e10d8e12c3713d79de0baf6SIM-PKH version 2.4.1 suffers from a remote shell upload vulnerability.
36310436e663f2db517072a0396e6a67Zoho ManageEngine OpManager version 12.3 suffers from an arbitrary file upload vulnerability.
b73044f9aa33dc3ee3303e3f5cfab8f1jQuery-File-Upload versions 9.22.0 and below suffer from an unauthenticated arbitrary file upload vulnerability that allows for remote command execution.
ea6808b39068792822a1f9dce775e157Cisco Prime Infrastructure (CPI) contains two basic flaws that when exploited allow an unauthenticated attacker to achieve remote code execution. The first flaw is a file upload vulnerability that allows the attacker to upload and execute files as the Apache Tomcat user; the second is a privilege escalation to root by bypassing execution restrictions in a SUID binary. This Metasploit module exploits these vulnerabilities to achieve unauthenticated remote code execution as root on the CPI default installation. This Metasploit module has been tested with CPI 3.2.0.0.258 and 3.4.0.0.348. Earlier and later versions might also be affected, although 3.4.0.0.348 is the latest at the time of writing.
05f34986eb4c21ba7fbb27faa2f9bc8fWordPress WP Insert plugin versions 2.4.2 and below suffer from a remote file upload vulnerability.
eb35a6a7e6e061b0d06e449c248396abHiScout GRC Suite versions prior to 3.1.5 suffer from a file upload vulnerability. An authenticated attacker with the permission to edit or add a "WebSiteElement" to the "content" pages is able to upload any file with any file extension to the data directory of the application. This directory is in the web root and the uploaded file is executed on the server if ".aspx" is chosen as the file extension and if the file contains aspx source code. Any commands can be executed with the permissions of the web server user on the server by exploiting this vulnerability.
a35fd22828c02d235e1b374dd87de2afLiteCart version 2.1.2 suffers from a remote file upload vulnerability.
44fd0ea7d19bec8cfb7f443bc7ae5960OCS Inventory NG OCS Inventory Server through 2.5 allows a privileged user to gain access to the server via a template file containing PHP code, because file extensions other than .html are permitted.
f671f8d4d1775a87dfdb4e245c86573aThis Metasploit module exploits an arbitrary file upload vulnerability in Responsive Thumbnail Slider Plugin v1.0 for WordPress post authentication.
be85945c5f032d73aa3ce61a1cd67566Whitepaper called File Upload Restrictions Bypass.
9d615f9f2d0f44874ac4900c33b860efWAGO e!DISPLAY 7300T WP 4.3 480x272 PIO1 version FW 01 - 01.01.10(01) suffer from code execution, cross site scripting, weak permission, and remote file upload vulnerabilities.
f12e1bdd6ce0d40862c5cca1957f6a1aShopNx suffers from an arbitrary file upload vulnerability.
873cfaf579555162d921b6c033b40dabIntex Router N-150 suffers from a remote arbitrary file upload vulnerability.
3f9571e629e73736e76af98281a91a9aRedaxo CMS Mediapool add-on versions prior to 5.5.1 suffer from a remote file upload vulnerability.
2ee9e258e0cbc86d2f56b93a4898abbbAppnitro MachForm suffers from remote file upload, remote SQL injection, and path traversal vulnerabilities.
b12919cc6902374a5ee31d11fbf166fdEasy File Uploader version 1.7 suffers from a remote shell upload vulnerability.
72afb65d3fa31008dd700ca8653852f9Easy File Uploader version 1.7 suffers from cross site scripting and remote SQL injection vulnerabilities.
c05bbc2ad32029b0f1334e4d15889fbbMyBiz MyProcureNet version 5.0.0 suffers from remote file upload and cross site scripting vulnerabilities.
9d259792840d984bdc75e2b482b86e96
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed