CVE-2011-0678 in ActiveWebinformazioni

Riassunto

di MITRE

Unrestricted file upload vulnerability in the EasyEdit module in Lomtec ActiveWeb Professional 3.0 allows remote attackers to execute arbitrary code by uploading an executable file via the UploadDirectory and Accepted Extensions fields in the getImagefile component of EasyEdit.cfm.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

28/01/2011

Divulgazione

28/01/2011

Moderazione

accettato

Voce

VDB-56254

CPE

pronto

CWE

CWE-434 (confermato)

Sfruttamento

Scaricare

CVSS

6.8 (NVD)

EPSS

0.09211

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-0678
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-0678
CVE Details	https://www.cvedetails.com/cve/CVE-2011-0678/

◂ Precedente Visione D'ensemble Il prossimo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!