cve/CVE-2019-19576.md at e67cd2fdb0a3b693c8a19c46acadbde4fe3ee9dd

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-16 20:27:21 +00:00

0xMarcio 6100550298 Update CVE sources 2024-06-22 09:37

2024-06-22 09:37:59 +00:00

1016 B

Raw Blame History

CVE-2019-19576

Description

class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for Joomla! and other products, omits .phar from the set of dangerous file extensions.

POC

Reference

http://packetstormsecurity.com/files/155577/Verot-2.0.3-Remote-Code-Execution.html
https://github.com/jra89/CVE-2019-19576
https://medium.com/@jra8908/cve-2019-19576-e9da712b779

Github

https://github.com/0xT11/CVE-POC
https://github.com/ARPSyndicate/cvemon
https://github.com/developer3000S/PoC-in-GitHub
https://github.com/hectorgie/PoC-in-GitHub
https://github.com/jra89/CVE-2019-19576
https://github.com/jra89/CVE-2019-19634

1016 B Raw Blame History

CVE-2019-19576

Description

POC

Reference

Github

1016 B

Raw Blame History