Verot Project Verot vulnerabilities
2 known vulnerabilities affecting verot_project/verot.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2019-19576P2CRITICALCVSS 9.8PoCfixed in 1.0.3≥ 2.0.0, < 2.0.42019-12-04
CVE-2019-19576 [CRITICAL] CWE-434 CVE-2019-19576: class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 exte
class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for Joomla! and other products, omits .phar from the set of dangerous file extensions.
nvd
CVE-2019-19634P3CRITICALCVSS 9.8fixed in 1.0.3≥ 2.0.0, < 2.0.42019-12-17
CVE-2019-19634 [CRITICAL] CVE-2019-19634: class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 ex
class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension for Joomla! and other products, omits .pht from the set of dangerous file extensions, a similar issue to CVE-2019-19576.
nvd