cve/CVE-2018-19457.md at ad8a3fa3088ca10ac9930fca45c36f259b28e921 - cve - 临风笛

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-30 04:49:42 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

609 B

Raw Blame History

CVE-2018-19457

Description

Logicspice FAQ Script 2.9.7 allows uploading arbitrary files, which leads to remote command execution via admin/faqs/faqimages with a .php file.

POC

Reference

https://www.exploit-db.com/exploits/45326/

Github

No PoCs found on GitHub currently.