Team IT Security (TSEC) Nachrichtenportal Logo

🕵️ CVE-2024-6083 | PHPVibe 11.0.46 Media Upload Page upload-mp3.php file unrestricted upload


Nachrichtenbereich: 🕵️ Sicherheitslücken
🔗 Quelle: vuldb.com

A vulnerability, which was classified as critical, was found in PHPVibe 11.0.46. Affected is an unknown function of the file /app/uploading/upload-mp3.php of the component Media Upload Page. The manipulation of the argument file leads to unrestricted upload. This vulnerability is traded as CVE-2024-6083. It is possible to launch the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way. ...

Sharing is caring on Social Media

Reddit
Telegram
LinkedIn
Xing
Twitter
Whatsapp
Facebook
Flipboard

🕵️ CVE-2015-5399 | PHPVibe up to 4.20 cross site scripting (ID 132715 / EDB-37659)


📈 31.52 Punkte
🕵️ Sicherheitslücken

🕵️ PHPVibe bis 4.20 Cross Site Scripting [CVE-2015-5399]


📈 31.52 Punkte
🕵️ Sicherheitslücken

🕵️ PHPVibe bis 4.20 Cross Site Scripting [CVE-2015-5399]


📈 31.52 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2015-1172 | Holding Pattern up to 0.6 File Upload admin/upload-file.php unrestricted upload (ID 130282 / BID-72546)


📈 30.3 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2022-3771 | easyii CMS File Upload Management helpers/Upload.php file unrestricted upload


📈 30.3 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-4006 | youyiio BeyongCms 1.6.0 Document Management Page /admin/theme/Upload.html File unrestricted upload


📈 29.85 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2015-2876 | Seagate Storage up to 3.4.1.104 File Upload /media/sda2 unrestricted upload (VU#903500)


📈 28.07 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2018-18930 | TightRope Media Carousel Digital Signage 7.0.4.104 File Upload ZIP Archive unrestricted upload


📈 28.07 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-3593 | ZHENFENG13/code-projects My-Blog-layui 1.0 /admin/upload/authorImg/ upload File unrestricted upload


📈 27.39 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2016-5050 | ReadyDesk 9.1 File Upload chat/sendfile.aspx ASPX File unrestricted upload (VU#294272 / BID-92487)


📈 26.9 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2015-7904 | Infinite Automation Mango Automation prior 2.6.0 Build 430 File Upload Image File unrestricted upload (EDB-38338)


📈 26.9 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2015-5681 | Powerplay Gallery Plugin 3.3 on WordPress File Upload upload.php unrestricted upload (ID 132671)


📈 26.43 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2019-19634 | verot.net class.upload up to 2.0.4 File Extension class.upload.php unrestricted upload


📈 26.43 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-1970 | yuan1994 tpAdmin 1.3.12 Upload.php Upload file unrestricted upload


📈 26.43 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2017-15054 | TeamPass up to 2.1.27.8 File Upload upload.files.php Parameter unrestricted upload (ID 865292)


📈 26.43 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-2978 | WCMS 11 Article Publishing Page ?&CKEditor=container&CKEditorFuncNum=1 Upload unrestricted upload


📈 25.98 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2014-2088 | ilias 4.4.1 File Upload ilias.php unrestricted upload (File 125350/ILI / EDB-31833)


📈 25.95 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2020-10224 | PHPGurukul Online Book Store 1.0 File Upload admin_add.php PHP File unrestricted upload (EDB-47887)


📈 25.95 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2020-10225 | PHPGurukul Job Portal 1.0 File Upload admin/gallery.php PHP File unrestricted upload (EDB-47881)


📈 25.95 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-6902 | codelyfe Stupid Simple CMS up to 1.2.4 /file-manager/upload.php file unrestricted upload


📈 25.95 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2019-8140 | Magento up to 2.2.9/2.3.2 Synchronization Media File unrestricted upload


📈 23.72 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-6887 | saysky ForestBlog up to 20220630 Image Upload /admin/upload/img filename unrestricted upload


📈 23.53 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2020-10621 | Advantech WebAccess/NMS up to 3.0.1 File Upload unrestricted upload


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-4259 | newbee-mall 1.0 UploadController.java upload File unrestricted upload


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2022-45527 | Future-Depth IMS 1.0 File Upload unrestricted upload


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2020-10934 | Acyba AcyMailing up to 6.9.1 File Upload unrestricted upload


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2020-5509 | PHPGurukul Car Rental Project 1.0 File Upload Profile Image unrestricted upload (ID 155925 / EDB-52243)


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-23314 | zdir 3.2.0 SSH File /api/upload unrestricted upload (ID 90)


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2022-29464 | WSO2 API Manager File Upload unrestricted upload


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-2328 | Contact Form Drag and Drop Multiple File Upload for Contact Form 7 Plugin Path Validation dnd_remove_uploaded_files unrestricted upload


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2022-40048 | Flatpress 1.2.1 Upload File unrestricted upload (ID 152)


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2018-17058 | JABA XPress Online Shop up to 2018-09-14 File Upload ProductEdit.aspx Parameter unrestricted upload


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2025-2219 | LoveCards LoveCardsV2 up to 2.3.2 /api/upload/image file unrestricted upload


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2022-40050 | ZFile 4.1.1 /file/upload/1 unrestricted upload


📈 23.04 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2019-15936 | Intesync Solismed 3.3sp File Upload unrestricted upload


📈 23.04 Punkte
🕵️ Sicherheitslücken