CVE Vulnerabilities

CVE-2010-1334

Published: Apr 09, 2010 | Modified: Apr 12, 2010

CVSS 3.x

N/A

Source:

NVD

CVSS 2.x

6 MEDIUM

RedHat/V2

RedHat/V3

Ubuntu

Additional information

NVD	https://nvd.nist.gov/vuln/detail/CVE-2010-1334
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Unrestricted file upload vulnerability in Pulse CMS Basic 1.2.4 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension followed by a safe extension, then accessing it via a direct request to the file in an unspecified directory, a different vulnerability than CVE-2010-0993.

Affected Software

Name	Vendor	Start Version	End Version
Pulse_cms	Pulsecms	1.2.4 (including)	1.2.4 (including)

References

http://secunia.com/advisories/39046

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.