Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file upload manager file upload manager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-3520
VMware vCenter Chargeback Manager (aka CBM) prior to 2.5.1 does not proper handle uploads, which allows remote malicious users to execute arbitrary code via unspecified vectors.
Vmware Vcenter Chargeback Manager 1.6.0
Vmware Vcenter Chargeback Manager 1.6.2
Vmware Vcenter Chargeback Manager 2.0.0
Vmware Vcenter Chargeback Manager
Vmware Vcenter Chargeback Manager 2.0.1
Vmware Vcenter Chargeback Manager 1.6.1
Vmware Vcenter Chargeback Manager 1.5.0
1 EDB exploit
NA
CVE-2013-4811
UpdateDomainControllerServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the adCert argument, which allows remote malicious users to upload .jsp files and consequen...
Hp Identity Driven Manager 4.0
Hp Procurve Manager 3.20
Hp Procurve Manager 4.0
1 EDB exploit
NA
CVE-2013-4812
UpdateCertificatesServlet in the SNAC registration server in HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, and Identity Driven Manager (IDM) 4.0 does not properly validate the fileName argument, which allows remote malicious users to upload .jsp files and consequentl...
Hp Procurve Manager 3.20
Hp Procurve Manager 4.0
Hp Identity Driven Manager 4.0
1 EDB exploit
NA
CVE-2008-3362
Unrestricted file upload vulnerability in upload.php in the Giulio Ganci Wp Downloads Manager module 0.2 for WordPress allows remote malicious users to execute arbitrary code by uploading a file with an executable extension via the upfile parameter, then accessing it via a direct...
Giulio Ganci Wp Downloads Manager 0.2
Wordpress Wp Downloads Manager 0.2
1 EDB exploit
NA
CVE-2009-2238
Unrestricted file upload vulnerability in includes/shared_scripts/wysiwyg_editor/assetmanager/assetmanager.asp in DMXReady Registration Manager 1.1 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a di...
Dmxready Registration Manager 1.1
1 EDB exploit
NA
CVE-2014-3316
The Multiple Analyzer in the Dialed Number Analyzer (DNA) component in Cisco Unified Communications Manager allows remote authenticated users to bypass intended upload restrictions via a crafted parameter, aka Bug ID CSCup76297.
Cisco Unified Communications Manager 10.0\\(1\\) Base
Cisco Unified Communications Manager
NA
CVE-2005-1604
PHP Advanced Transfer Manager (phpATM) 1.21 allows remote malicious users to upload arbitrary files via filenames containing multiple file extensions, as demonstrated using a filename ending in "php.ns", which allows execution of arbitrary PHP code.
Bugada Andrea Php Advanced Transfer Manager 1.21
1 EDB exploit
NA
CVE-2008-7167
Unrestricted file upload vulnerability in upload.php in Page Manager 2006-02-04 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory.
Sami Ekblad Page Manager 2006-02-04
1 EDB exploit
NA
CVE-2013-5486
Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) prior to 6.2(1) allows remote malicious users to write arbitrary files via the chartid parameter, aka Bug IDs CSCue77035 and CSCue77036. NOTE: this can b...
Cisco Prime Data Center Network Manager 5.0\\(3\\)
Cisco Prime Data Center Network Manager 5.0\\(2\\)
Cisco Prime Data Center Network Manager 4.2\\(3\\)
Cisco Prime Data Center Network Manager 4.2\\(1\\)
Cisco Prime Data Center Network Manager 4.1\\(5\\)
Cisco Prime Data Center Network Manager 5.2\\(2e\\)
Cisco Prime Data Center Network Manager 5.2\\(2c\\)
Cisco Prime Data Center Network Manager 5.2\\(2b\\)
Cisco Prime Data Center Network Manager 5.2\\(2a\\)
Cisco Prime Data Center Network Manager 6.1\\(1b\\)
Cisco Prime Data Center Network Manager 5.1\\(3u\\)
Cisco Prime Data Center Network Manager 5.1\\(1\\)
Cisco Prime Data Center Network Manager 4.1\\(3\\)
Cisco Prime Data Center Network Manager 6.1\\(1a\\)
Cisco Prime Data Center Network Manager 5.2\\(2\\)
Cisco Prime Data Center Network Manager 5.1\\(2\\)
Cisco Prime Data Center Network Manager 4.1\\(4\\)
Cisco Prime Data Center Network Manager 4.1\\(2\\)
Cisco Prime Data Center Network Manager
1 EDB exploit
9.8
CVSSv3
CVE-2022-29464
Certain WSO2 products allow unrestricted file upload with resultant remote code execution. The attacker must use a /fileupload endpoint with a Content-Disposition directory traversal sequence to reach a directory under the web root, such as a ../../../../repository/deployment/ser...
Wso2 Identity Server Analytics 5.5.0
Wso2 Identity Server Analytics 5.4.1
Wso2 Identity Server Analytics 5.6.0
Wso2 Identity Server Analytics 5.4.0
Wso2 Api Manager
Wso2 Identity Server
Wso2 Enterprise Integrator
Wso2 Identity Server As Key Manager
31 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »