Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Worldlevel Subscribe
Filtered by product Le.cms
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-2833 1 Worldlevel 1 Le.cms 2017-09-28 10.0 HIGH N/A
admin/upload.php in le.cms 1.4 and earlier allows remote attackers to bypass administrative authentication, and upload and execute arbitrary files in images/, via a nonzero value for the submit0 parameter in conjunction with filenames in the filename and upload parameters.