Vulnerability in Searchblox

CVE-2013-3590

Unrestricted file upload vulnerability in admin/uploadImage.html in SearchBlox before 7.5 build 1 allows remote attackers to execute arbitrary code by uploading an executable file with the image/jpeg content type, and then accessing this f…

EPSS: 0.027 (83.9th percentile) — read the EPSS interpretation.

Affected products

  • Searchblox — versions 6.2, 6.3, 6.4
  • N/a — versions n/a

References