Cim Project

cim_project

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Cim

cim

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-7692 1Cim Project 1Cim Nov 21, 2024 Feb 10, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 install/install.php in CIM 0.9.3 allows remote attackers to execute arbitrary PHP code via a crafted prefix value because of configuration file mishandling in the N=83 case, as demonstrated by a call to the PHP fputs fun...Show more install/install.php in CIM 0.9.3 allows remote attackers to execute arbitrary PHP code via a crafted prefix value because of configuration file mishandling in the N=83 case, as demonstrated by a call to the PHP fputs function that creates a .php file in the public folder.Show less
CVE-2018-20614 1Cim Project 1Cim Nov 21, 2024 Dec 30, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 public\install\install.php in CIM 0.9.3 allows remote attackers to reload the product via the public/install/#/step3 URI.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2019-7692

1Cim Project

1Cim

Nov 21, 2024

Feb 10, 2019

N/A· v4

9.8 CRITICAL· v3

7.5 HIGH· v2

install/install.php in CIM 0.9.3 allows remote attackers to execute arbitrary PHP code via a crafted prefix value because of configuration file mishandling in the N=83 case, as demonstrated by a call to the PHP fputs fun...Show more

CVE-2018-20614

1Cim Project

1Cim

Nov 21, 2024

Dec 30, 2018

N/A· v4

7.5 HIGH· v3

5.0 MEDIUM· v2

public\install\install.php in CIM 0.9.3 allows remote attackers to reload the product via the public/install/#/step3 URI.