CVE-2011-4828

EPSS 79.69% · P99 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2011-4828

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Unrestricted file upload vulnerability in includes/inline_image_upload.php in AutoSec Tools V-CMS 1.0 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in temp/.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

AutoSec Tools V-CMS无限制文件上传漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

AutoSec Tools V-CMS 1.0版本的includes/inline_image_upload.php中存在无限制文件上传漏洞。远程攻击者可通过上传带有可执行扩展的文件执行任意代码，然后借助直接请求temp/的文件访问。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2011-4828

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2011-4828

请登录查看更多情报信息。

http://bugs.v-cms.org/view.php?id=53x_refsource_CONFIRM
http://bugs.v-cms.org/changelog_page.phpx_refsource_CONFIRM
http://www.autosectools.com/Advisory/V-CMS-1.0-Arbitrary-Upload-236x_refsource_MISC
http://secunia.com/advisories/46861third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/50706vdb-entryx_refsource_BID
https://nvd.nist.gov/vuln/detail/CVE-2011-4828

Same Patch Batch · n/a · 2011-12-15 · 22 CVEs total

CVE-2011-4826		AutoSec Tools V-CMS ‘session.php’SQL注入漏洞
CVE-2011-4837		HomeSeer HS2跨站请求伪造漏洞
CVE-2011-4836		HomeSeer HS2跨站脚本漏洞
CVE-2011-4835		HS2目录遍历漏洞
CVE-2011-4834		HP Application Lifestyle Management本地权限提升漏洞
CVE-2011-4833		SugarCRM Leads模块SQL注入漏洞
CVE-2011-4832		CaupoShop Pro ‘template’参数目录遍历漏洞
CVE-2011-4831		Web File Browser ‘webFileBrowser.php’目录遍历漏洞
CVE-2011-4830		Joomla! Barter Sites 组件多个跨站脚本漏洞
CVE-2011-4829		Joomla! Barter Sites 组件SQL注入漏洞
CVE-2011-4827		AutoSec Tools V-CMS 多个跨站脚本漏洞
CVE-2011-4339		IMPItool拒绝服务漏洞
CVE-2011-4825		Ajax File/Image Manager静态代码注入漏洞
CVE-2011-4824		Cacti ‘auth_login.php’SQL注入漏洞
CVE-2011-4823		Joomla! ‘Vik Real Estate’组件多个SQL注入漏洞
CVE-2011-4822		Atlassian FishEye多个跨站脚本漏洞
CVE-2011-4606		Artsoft Entertainment Rocks‘n’Diamonds覆盖任意文件漏洞
CVE-2011-4598		Asterisk Open Source ‘channels/chan_sip.c’拒绝服务漏洞
CVE-2011-4597		Asterisk Open Source 安全漏洞
CVE-2011-4517		JasPer安全漏洞

Showing top 20 of 22 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2011-4828

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2011-4828

I. Basic Information for CVE-2011-4828

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2011-4828

III. Intelligence Information for CVE-2011-4828

Same Patch Batch · n/a · 2011-12-15 · 22 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2011-4828

Leave a comment