Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2018-10574
HistoryApr 30, 2018 - 8:00 p.m.

CVE-2018-10574

2018-04-3020:00:00
mitre
www.cve.org
3
bigtree
remote attack
php code execution
.htaccess files

AI Score

9.9

Confidence

High

EPSS

0.007

Percentile

80.4%

JSON

site/index.php/admin/trees/add/ in BigTree 4.2.22 and earlier allows remote attackers to upload and execute arbitrary PHP code because the BigTreeStorage class in core/inc/bigtree/apis/storage.php does not prevent uploads of .htaccess files.

Related

openvas 1
prion 1
cve 1
nvd 1
osv 1
openvas
openvas
BigTree CMS <= 4.2.22 Remote Upload & Code Execution Vulnerability
2018-05-02 00:00:00
prion
prion
Code injection
2018-04-30 20:29:00
cve
cve
CVE-2018-10574
2018-04-30 20:29:00
nvd
nvd
CVE-2018-10574
2018-04-30 20:29:00
osv
osv
CVE-2018-10574
2018-04-30 20:29:00

AI Score

9.9

Confidence

High

EPSS

0.007

Percentile

80.4%

JSON
Related for CVELIST:CVE-2018-10574
openvas1prion1cve1nvd1osv1