Logicspice FAQ Script 2.9.7 allows uploading arbitrary files, which leads to remote command execution via admin/faqs/faqimages with a .php file.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-11-22T20:00:00Z
Updated: 2024-09-17T02:31:35.236Z
Reserved: 2018-11-22T00:00:00Z
Link: CVE-2018-19457
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-11-22T20:29:00.223
Modified: 2018-12-18T16:59:47.827
Link: CVE-2018-19457
Redhat
No data.