NuytsTech Security

CVE-2019-13187

by ·

The Rich Text Formatter (Redactor) extension through v1.1.1 for Symphony CMS has an Unauthenticated arbitrary file upload vulnerability in content.fileupload.php and content.imageupload.php.

Date published : 2019-09-05

http://symphonyextensions.com/extensions/richtext_redactor/

https://blog.contentsecurity.com.au/redactor-unrestricted-file-upload

Tags: