cbcvebase.

Upredsun File Sharing Wizard vulnerabilities

4 known vulnerabilities affecting upredsun/file_sharing_wizard.

Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH1

Vulnerabilities

Page 1 of 1
CVE-2019-16724P2CRITICALCVSS 9.8PoCv1.5.02019-09-24
CVE-2019-16724 [CRITICAL] CVE-2019-16724: File Sharing Wizard 1.5.0 allows a remote attacker to obtain arbitrary code execution by exploiting File Sharing Wizard 1.5.0 allows a remote attacker to obtain arbitrary code execution by exploiting a Structured Exception Handler (SEH) based buffer overflow in an HTTP POST parameter, a similar issue to CVE-2010-2330 and CVE-2010-2331.
nvd
CVE-2019-18655P2CRITICALCVSS 9.8v1.5.02019-11-12
CVE-2019-18655 [CRITICAL] CVE-2019-18655: File Sharing Wizard version 1.5.0 build 2008 is affected by a Structured Exception Handler based buf File Sharing Wizard version 1.5.0 build 2008 is affected by a Structured Exception Handler based buffer overflow vulnerability. An unauthenticated attacker is able to perform remote command execution and obtain a command shell by sending a HTTP GET request including the malicious payload in the URL. A similar issue to CVE-2019-17415, CVE-2019-16724, and C
nvd
CVE-2019-17415P3CRITICALCVSS 9.8v1.5.02019-10-09
CVE-2019-17415 [CRITICAL] CVE-2019-17415: A Structured Exception Handler (SEH) based buffer overflow in File Sharing Wizard 1.5.0 26-8-2008 al A Structured Exception Handler (SEH) based buffer overflow in File Sharing Wizard 1.5.0 26-8-2008 allows remote unauthenticated attackers to execute arbitrary code via the HTTP DELETE method, a similar issue to CVE-2019-16724 and CVE-2010-2331.
nvd
CVE-2024-0418P3HIGHCVSS 7.5≤ 1.5.02024-01-11
CVE-2024-0418 [HIGH] CWE-404 CVE-2024-0418: A vulnerability has been found in iSharer and upRedSun File Sharing Wizard up to 1.5.0 and classifie A vulnerability has been found in iSharer and upRedSun File Sharing Wizard up to 1.5.0 and classified as problematic. This vulnerability affects unknown code of the component GET Request Handler. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-250438 is
nvd
Upredsun File Sharing Wizard vulnerabilities | cvebase