Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2019-17575
HistoryOct 14, 2019 - 2:07 p.m.

CVE-2019-17575

2019-10-1414:07:37
mitre
www.cve.org

7.3 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.9%

JSON

A file-rename filter bypass exists in admin/media/rename.php in WBCE CMS 1.4.0 and earlier. This can be exploited by an authenticated user with admin privileges to rename a media filename and extension. (For example: place PHP code in a .jpg file, and then change the file’s base name to filename.ph and change the file’s extension to p. Because of concatenation, the name is then treated as filename.php.) At the result, remote attackers can execute arbitrary PHP code.

Related

nvd 1
osv 1
cve 1
prion 1
nvd
nvd
CVE-2019-17575
2019-10-14 15:15:10
osv
osv
CVE-2019-17575
2019-10-14 15:15:10
cve
cve
CVE-2019-17575
2019-10-14 15:15:10
prion
prion
Code injection
2019-10-14 15:15:00

7.3 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.9%

JSON
Related for CVELIST:CVE-2019-17575
nvd1osv1cve1prion1