There is an arbitrary file upload vulnerability in the background of textpattern cms v4.8.8, which leads to the loss of server...
8.8CVSS
7.5AI Score
0.001EPSS
Directory Traversal vulnerability in Textpattern CMS v4.8.8 allows a remote authenticated attacker to execute arbitrary code and gain access to sensitive information via the plugin Upload...
7.2CVSS
7.1AI Score
0.002EPSS
An arbitrary file upload vulnerability in the plugin upload function of Textpattern v4.8.8 allows attackers to execute arbitrary code via a crafted Zip...
8.8CVSS
8.8AI Score
0.001EPSS
An arbitrary file upload vulnerability in the upload plugin of Textpattern v4.8.8 and below allows attackers to execute arbitrary code by uploading a crafted PHP...
7.2CVSS
7.3AI Score
0.001EPSS
Textpattern CMS v4.8.7 and older vulnerability exists through Sensitive Cookie in HTTPS Session Without 'Secure' Attribute via textpattern/lib/txplib_misc.php. The secure flag is not set for txp_login session cookie in the application. If the secure flag is not set, then the cookie will be...
4.3CVSS
4.5AI Score
0.001EPSS