CVE List

Id CVE No. Status Description Phase Votes Comments Actions
27733  CVE-2007-4376  Candidate  Unrestricted file upload vulnerability in banner-upload.php in Szymon Kosok Best Top List allows remote attackers to upload and execute arbitrary PHP files in banners/.  Assigned (20070816)  None (candidate not yet proposed)    View
36777  CVE-2008-6660  Candidate  Unrestricted file upload vulnerability in bigdump.php in Alexey Ozerov BigDump 0.29b allows remote attackers to execute arbitrary code by uploading a file with an executable extension followed by a .sql extension, then accessing this file via a direct request. NOTE: some of these details are obtained from third party information.  Assigned (20090407)  None (candidate not yet proposed)    View
32949  CVE-2008-2832  Candidate  Unrestricted file upload vulnerability in calendar_admin.asp in Full Revolution aspWebCalendar 2008 allows remote attackers to upload and execute arbitrary code via the FILE1 parameter in an uploadfileprocess action, probably followed by a direct request to the file in calendar/eventimages/.  Assigned (20080624)  None (candidate not yet proposed)    View
62527  CVE-2013-2580  Candidate  Unrestricted file upload vulnerability in cgi-bin/uploadfile in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6, allows remote attackers to upload arbitrary files, then accessing it via a direct request to the file in the mnt/mtd directory.  Assigned (20130315)  None (candidate not yet proposed)    View
80271  CVE-2015-2994  Candidate  Unrestricted file upload vulnerability in ChangePhoto.jsp in SysAid Help Desk before 15.2 allows remote administrators to execute arbitrary code by uploading a file with a .jsp extension, then accessing it via a direct request to the file in icons/user_photo/.  Assigned (20150407)  None (candidate not yet proposed)    View

Page 18731 of 20943, showing 5 records out of 104715 total, starting on record 93651, ending on 93655

Actions