Ekultek/CVE-2019-7216

Releases0

Stars10

Filechucker filter bypass Proof Of Concept

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-7216 ↗	Jan 31, 2019Thursday, 31 January 2019, 09:29	—	6.8 MEDIUM
An issue was discovered in FileChucker 4.99e-free-e02. filechucker.cgi has a filter bypass that allows a malicious user to upload any type of file by using % characters within the extension, e.g., file.%ph%p becomes file.php.