Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-39147

Published: 01/08/2023 Updated: 04/08/2023
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Webkul

Vulnerability Summary

An arbitrary file upload vulnerability in Uvdesk 1.1.3 allows malicious users to execute arbitrary code via uploading a crafted image file.

Vulnerable Product Search on Vulmon Subscribe to Product

webkul uvdesk 1.1.3

Exploits

Exploit DB: Uvdesk 1.1.3 Shell Upload
Uvdesk version 113 suffers from a remote shell upload vulnerability ...

References

CWE-434https://docs.google.com/document/d/1uv9DjHmKuDxZIjNhWX05EsxHEp8fGalXB7XK-QSyr_0/edit?usp=sharinghttp://packetstormsecurity.com/files/173878/Uvdesk-1.1.3-Shell-Upload.htmlhttps://nvd.nist.govhttps://packetstormsecurity.com/files/173878/Uvdesk-1.1.3-Shell-Upload.html
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook