NVD

Id
39359  
Name
CVE-2013-3590  
Description
Unrestricted file upload vulnerability in admin/uploadImage.html in SearchBlox before 7.5 build 1 allows remote attackers to execute arbitrary code by uploading an executable file with the image/jpeg content type, and then accessing this file via unspecified vectors, as demonstrated by access to a JSP file.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-18  
Published
2013-08-28  
Modified Date
2013-10-07  
Seq
2013-3590  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
200834 39359 CVE-2013-3590 http://buddhalabs.com/Advisories/WebAdvisories.html  View
200835 39359 CVE-2013-3590 VU#592942  View
200836 39359 CVE-2013-3590 http://www.searchblox.com/developers-2/change-log  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
22329 JVNDB-2013-003904 SearchBlox の admin/uploadImage.html における任意のコードを実行される脆弱性 SearchBlox の admin/uploadImage.html には、ファイルをアップロードされることにより、任意のコードを実行される脆弱性が存在します。 CVE-2013-3590 63532 CVE-2013-3590 39359 6.8 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-003904.html 2013-08-23 2013-10-21 View