Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv2

CVE-2015-1059

Published: 16/01/2015 Updated: 08/09/2017
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
VMScore: 655
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Subscribe to Insanevisions

Vulnerability Summary

Unrestricted file upload vulnerability in admin/files/add in AdaptCMS 3.0.3 allows remote authenticated users to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a direct request to the file in /app/webroot/uploads.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

insanevisions adaptcms 3.0.3

Exploits

Exploit DB: AdaptCMS 3.0.3 - Multiple Vulnerabilities
#!/usr/bin/env python # # # AdaptCMS 303 Remote Command Execution Exploit # # # Vendor: Insane Visions # Product web page: wwwadaptcmscom # Affected version: 303 # # Summary: AdaptCMS is a Content Management System trying # to be both simple and easy to use, as well as very agile # and extendable Not only so we can easily create Plugi ...

References

CWE-94http://www.exploit-db.com/exploits/35710http://packetstormsecurity.com/files/129814/AdaptCMS-3.0.3-Remote-Command-Execution.htmlhttp://zeroscience.mk/en/vulnerabilities/ZSL-2015-5220.phphttp://osvdb.org/show/osvdb/116722https://exchange.xforce.ibmcloud.com/vulnerabilities/99616https://nvd.nist.govhttps://www.exploit-db.com/exploits/35710/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
injectionCVE-2024-30983CVE-2023-4235CVE-2024-21338privilegeencryptionCVE-2023-4232CVE-2024-31497CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook