Vulnerabilities (CVE)

Filtered by vendor Vibechild Subscribe
Filtered by product Directory Manager
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2001-1020 1 Vibechild 1 Directory Manager 2024-11-20 7.5 HIGH N/A
edit_image.php in Vibechild Directory Manager before 0.91 allows remote attackers to execute arbitrary commands via shell metacharacters in the userfile_name parameter, which is sent unfiltered to the PHP passthru function.