CVE-2011-0678 in ActiveWebinfo

Zusammenfassung

von MITRE

Unrestricted file upload vulnerability in the EasyEdit module in Lomtec ActiveWeb Professional 3.0 allows remote attackers to execute arbitrary code by uploading an executable file via the UploadDirectory and Accepted Extensions fields in the getImagefile component of EasyEdit.cfm.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

28.01.2011

Veröffentlichung

28.01.2011

Moderieren

akzeptiert

Eintrag

VDB-56254

CPE

bereit

CWE

CWE-434 (bestätigt)

Exploit

Download

CVSS

6.8 (NVD)

EPSS

0.09211

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-0678
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-0678
CVE Details	https://www.cvedetails.com/cve/CVE-2011-0678/

◂ Zurück Übersicht Weiter ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!