CVE-2013-4949
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2013-4949
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Unrestricted file upload vulnerability in view.php in Machform 2 allows remote attackers to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in the upload form's directory in data/.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Appnitro Software Machform view.php 无限制文件上传漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Appnitro Software Machform是印度尼西亚Appnitro Software公司的一套在线问卷调查程序。 Machform 2.0版本中的view.php脚本中存在无限制文件上传漏洞。远程攻击者可通过上传一个PHP文件(系统默认放置PHP文件在data/目录下的上传表单目录中),随后发送HTTP请求访问目录中的该PHP文件,利用该漏洞执行任意PHP代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2013-4949
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2013-4949
Please Login to view more intelligence information
Same Patch Batch · n/a · 2013-07-29 · 32 CVEs total
| CVE-2013-4921 | Wireshark Radiotap解析器‘dissect_radiotap’函数数字错误漏洞 | |
| CVE-2013-4936 | Wireshark PROFINET Real-Time解析器‘dissect_smtp’函数拒绝服务漏洞 | |
| CVE-2013-4935 | Wireshark ASN.1 PER解析器数字错误漏洞 | |
| CVE-2013-4934 | Wireshark Netmon文件解析器‘netmon_open’函数缓冲区溢出漏洞 | |
| CVE-2013-4933 | Wireshark Netmon文件解析器‘netmon_open’函数缓冲区溢出漏洞 | |
| CVE-2013-4932 | Wireshark GSM A Common解析器输入验证漏洞 | |
| CVE-2013-4931 | Wireshark GSM RR解析器epan/proto.c文件资源管理错误漏洞 | |
| CVE-2013-4930 | Wireshark ‘dissect_dvbci_tpdu_hdr’函数输入验证漏洞 | |
| CVE-2013-4929 | Wireshark DIS解析器‘parseFields’函数数字错误漏洞 | |
| CVE-2013-4928 | Wireshark Bluetooth OBEX解析器‘dissect_headers’函数数字错误漏洞 | |
| CVE-2013-4927 | Wireshark Bluetooth SDP解析器‘get_type_length’函数数字错误漏洞 | |
| CVE-2013-4926 | Wireshark DCOM ISystemActivator解析器输入验证漏洞 | |
| CVE-2013-4925 | Wireshark DCOM ISystemActivator解析器数字错误漏洞 | |
| CVE-2013-4924 | Wireshark DCOM ISystemActivator解析器packet-dcom-sysact.c文件输入验证漏洞 | |
| CVE-2013-4923 | Wireshark DCOM ISystemActivator解析器资源管理错误漏洞 | |
| CVE-2013-4922 | Wireshark DCOM ISystemActivator解析器资源管理错误漏洞 | |
| CVE-2013-4947 | Flowerfire Sawmill 安全漏洞 | |
| CVE-2013-4920 | Wireshark 的P1解析器缓冲区溢出漏洞 | |
| CVE-2013-4944 | WordPress BuddyPress Extended Friendship Request插件跨站脚本漏洞 | |
| CVE-2013-3515 | OpenX Source 多个跨站脚本漏洞 |
Showing top 20 of 32 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8248
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send
V. Comments for CVE-2013-4949
No comments yet