CVE-2013-10034P2CRITICALCVSS 9.3PoCfixed in 6.3.0.22025-07-31
CVE-2013-10034 [CRITICAL] CWE-434 CVE-2013-10034: An unrestricted file upload vulnerability exists in Kaseya KServer versions prior to 6.3.0.2. The up
An unrestricted file upload vulnerability exists in Kaseya KServer versions prior to 6.3.0.2. The uploadImage.asp endpoint allows unauthenticated users to upload files to arbitrary paths via a crafted filename parameter in a multipart/form-data POST request. Due to the lack of authentication and input sanitation, an attacker can upload a file with
nvd