Interspire Email Marketer through 6.1.6 allows arbitrary file upload via a surveys_submit.php "create survey and submit survey" operation, which can cause a .php file to be accessible under a admin/temp/surveys/ URI.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-11-26T07:00:00
Updated: 2019-05-23T17:06:04
Reserved: 2018-11-25T00:00:00
Link: CVE-2018-19550
JSON object: View
NVD Information
Status : Modified
Published: 2018-11-26T07:29:00.813
Modified: 2023-11-07T02:55:34.377
Link: CVE-2018-19550
JSON object: View
Redhat Information
No data.
CWE