Jaws Project

jaws_project

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Jaws

jaws

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-35657 1Jaws Project 1Jaws Jun 17, 2026 Dec 23, 2020 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Jaws through 1.8.0 allows remote authenticated administrators to execute arbitrary code via crafted use of UploadTheme to upload a theme ZIP archive containing a .php file that is able to execute OS commands. NOTE: this...Show more Jaws through 1.8.0 allows remote authenticated administrators to execute arbitrary code via crafted use of UploadTheme to upload a theme ZIP archive containing a .php file that is able to execute OS commands. NOTE: this is unrelated to the JAWS (aka Job Access With Speech) product.Show less
CVE-2020-35656 1Jaws Project 1Jaws Jun 17, 2026 Dec 23, 2020 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Jaws through 1.8.0 allows remote authenticated administrators to execute arbitrary code via crafted use of admin.php?reqGadget=Components&reqAction=InstallGadget&comp=FileBrowser and admin.php?reqGadget=FileBrowser&reqAc...Show more Jaws through 1.8.0 allows remote authenticated administrators to execute arbitrary code via crafted use of admin.php?reqGadget=Components&reqAction=InstallGadget&comp=FileBrowser and admin.php?reqGadget=FileBrowser&reqAction=Files to upload a .php file. NOTE: this is unrelated to the JAWS (aka Job Access With Speech) product.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2020-35657

1Jaws Project

1Jaws

Jun 17, 2026

Dec 23, 2020

N/A· v4

7.2 HIGH· v3

6.5 MEDIUM· v2

Jaws through 1.8.0 allows remote authenticated administrators to execute arbitrary code via crafted use of UploadTheme to upload a theme ZIP archive containing a .php file that is able to execute OS commands. NOTE: this...Show more

CVE-2020-35656