Ulli Horlacher : Security Vulnerabilities, CVEs, CVSS score >= 5
The addto parameter to fup in Frams' Fast File EXchange (F*EX, aka fex) before fex-2014053 allows remote attackers to conduct cross-site scripting (XSS) attacks
Max CVSS
6.1
EPSS Score
0.31%
Published
2019-11-27
Updated
2019-12-06
Frams's Fast File EXchange (F*EX, aka fex) 20100208, and possibly other versions before 20110610, allows remote attackers to bypass authentication and upload arbitrary files via a request that lacks an authentication ID.
Max CVSS
5.0
EPSS Score
0.65%
Published
2011-06-24
Updated
2017-08-17
2 vulnerabilities found