Security Advisory

CVE-2020-10963

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-25 21:23:52

Last updated 2024-08-04 11:21:14

Assigner mitre

State PUBLISHED

Description

FrozenNode Laravel-Administrator through 5.0.12 allows unrestricted file upload (and consequently Remote Code Execution) via admin/tips_image/image/file_upload image upload with PHP content within a GIF image that has the .php extension. NOTE: this product is discontinued.

← Browse all CVEs View on cve.org ↗