Skip to main content
CVE-2015-3205 HIGH POC This Week

libmimedir allows remote attackers to execute arbitrary code via a VCF file with two NULL bytes at the end of the file, related to "free" function calls in the "lexer's memory clean-up procedure.". Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Libmimedir
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
7.6%
CVE-2015-4606 HIGH PATCH This Week

Unrestricted file upload vulnerability in the Job Fair (jobfair) extension before 1.0.1 for TYPO3, when using Apache with mod_mime, allows remote attackers to execute arbitrary code by uploading a. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

RCE File Upload Apache Job Fair
NVD
CVSS 2.0
7.5
EPSS
1.7%
CVE-2015-4607 HIGH PATCH This Week

Unrestricted file upload vulnerability in the Frontend User Upload (feupload) extension 0.5.0 and earlier for TYPO3 allows remote attackers to execute arbitrary code by uploading a file with an. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

RCE File Upload Frontend User Upload
NVD
CVSS 2.0
7.5
EPSS
1.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy