Zucchetti InfoBusiness before and including 4.4.1 allows any authenticated user to upload .php files in order to achieve code execution.
References
Link | Resource |
---|---|
https://blog.hacktivesecurity.com/index.php?controller=post&action=view&id_post=42 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-10-30T18:31:06
Updated: 2019-10-30T18:34:27
Reserved: 2019-10-19T00:00:00
Link: CVE-2019-18204
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-10-30T19:15:10.843
Modified: 2019-11-01T19:18:39.630
Link: CVE-2019-18204
JSON object: View
Redhat Information
No data.
CWE