Vulnerability in Searchblox
CVE-2013-3590
Unrestricted file upload vulnerability in admin/uploadImage.html in SearchBlox before 7.5 build 1 allows remote attackers to execute arbitrary code by uploading an executable file with the image/jpeg content type, and then accessing this f…
EPSS: 0.027 (83.9th percentile) — read the EPSS interpretation.
Affected products
- Searchblox — versions 6.2, 6.3, 6.4
- N/a — versions n/a
References
- cret@cert.org (US Government Resource, x_refsource_CERT-VN, third-party-advisory)
- cret@cert.org (x_refsource_MISC)
- cret@cert.org (x_refsource_CONFIRM)