JCE Joomla Component 2.5.0 to 2.5.2 allows arbitrary file upload via a .php file extension for an image file to the /com_jce/editor/libraries/classes/browser.php script.
References
Link | Resource |
---|---|
https://labs.integrity.pt/advisories/cve-2015-7339/ | Exploit Third Party Advisory |
Configurations
Information
Published : 2020-03-09 10:15
Updated : 2020-03-10 08:32
NVD link : CVE-2015-7339
Mitre link : CVE-2015-7339
JSON object : View
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type
Products Affected
widgetfactorylimited
- jce