Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Ansilove Subscribe
Filtered by product Ansilove
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-0694 1 Ansilove 1 Ansilove 2017-07-19 5.0 MEDIUM N/A
Unspecified vulnerability in the loaders (load_*.php) in Ansilove before 1.03 allows remote attackers to read arbitrary files via unspecified vectors involving "converting files accessible by the webserver".
CVE-2006-0695 1 Ansilove 1 Ansilove 2017-07-19 7.5 HIGH N/A
Ansilove before 1.03 does not filter uploaded file extensions, which allows remote attackers to execute arbitrary code by uploading arbitrary files with dangerous extensions, then accessing them directly in the upload directory.