Security Advisory

CVE-2019-19020

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-12-02 16:54:40

Last updated 2024-08-05 02:02:39

Assigner mitre

State PUBLISHED

Description

An issue was discovered in TitanHQ WebTitan before 5.18. In the administration web interface it is possible to upload a crafted backup file that enables an attacker to execute arbitrary code by overwriting existing files or adding new PHP files under the web root. This requires the attacker to have access to a valid web interface account.

← Browse all CVEs View on cve.org ↗