CVE-2016-10995
published 2019-09-18CVE-2016-10995: The Tevolution plugin before 2.3.0 for WordPress has arbitrary file upload via single_upload.php or single-upload.php.
PriorityP182critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
ITWVulnCheck KEV
Exploited in the wild
EPSS
1.97%
77.9th percentile
The Tevolution plugin before 2.3.0 for WordPress has arbitrary file upload via single_upload.php or single-upload.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| templatic | telvolution | < 2.3.0 | 2.3.0 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv8.1HIGH
vulncheck9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
slurm-llnl vulnerabilities
osv·2023-02-01·CVSS 8.1
CVE-2016-10030 slurm-llnl vulnerabilities
slurm-llnl vulnerabilities
USN-4781-1 fixed several vulnerabilities in Slurm. This update provides
the corresponding updates for Ubuntu 14.04 ESM (CVE-2016-10030) and
Ubuntu 16.04 ESM (CVE-2018-10995).
Original advisory details:
It was discovered that Slurm incorrectly handled certain messages
between the daemon and the user. An attacker could possibly use this
issue to assume control of an arbitrary file on the system. This
issue only affected Ubuntu 16.04 ESM.
(CVE-2016-10030)
It was discovered that Slurm mishandled SPANK environment variables.
An attacker could possibly use this issue to gain elevated privileges.
This issue only affected Ubuntu 16.04 ESM. (CVE-2017-15566)
It was discovered that Slurm mishandled certain SQL queries. A local
attacker could use this issue to gain elev
GHSA
GHSA-w5jh-cf2h-28xw: The Tevolution plugin before 2
ghsa_unreviewed·2022-05-24
CVE-2016-10995 [HIGH] GHSA-w5jh-cf2h-28xw: The Tevolution plugin before 2
The Tevolution plugin before 2.3.0 for WordPress has arbitrary file upload via single_upload.php or single-upload.php.
VulnCheck
templatic telvolution Unrestricted Upload of File with Dangerous Type
vulncheck·2016·CVSS 9.8
CVE-2016-10995 [CRITICAL] templatic telvolution Unrestricted Upload of File with Dangerous Type
templatic telvolution Unrestricted Upload of File with Dangerous Type
The Tevolution plugin before 2.3.0 for WordPress has arbitrary file upload via single_upload.php or single-upload.php.
Affected: templatic telvolution
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/Tevolution/tevolution-230-arbitrary-file-upload
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2019-09-18
Published
Exploited in the wild