SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, that is served over HTTP.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-11-13T22:38:17

Updated: 2024-08-05T02:02:39.901Z

Reserved: 2019-11-13T00:00:00

Link: CVE-2019-18952

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-11-13T23:15:11.590

Modified: 2024-11-21T04:33:54.207

Link: CVE-2019-18952

cve-icon Redhat

No data.