← Back

Smart Flash Header

smart_flash_header

Vendor: Projoom • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-1214
1Projoom
1Smart Flash Header
Nov 21, 2024
Nov 13, 2019
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
views/upload.php in the ProJoom Smart Flash Header (NovaSFH) component 3.0.2 and earlier for Joomla! allows remote attackers to upload and execute arbitrary files via a crafted (1) dest parameter and (2) arbitrary extens...Show more
views/upload.php in the ProJoom Smart Flash Header (NovaSFH) component 3.0.2 and earlier for Joomla! allows remote attackers to upload and execute arbitrary files via a crafted (1) dest parameter and (2) arbitrary extension in the Filename parameter.Show less