Academy LMS 6.1 - Arbitrary File Upload - CXSecurity.com
Tags
| attack-pattern: | Data Javascript - T1059.007 Server - T1583.004 Server - T1584.004 Software - T1592.002 Connection Proxy - T1090 |
Common Information
| Type | Value |
|---|---|
| UUID | dcf29101-fb7b-42d2-8890-5fa765738f76 |
| Fingerprint | 9d42f00df4eb9c0f |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Aug. 5, 2023, midnight |
| Added to db | Aug. 23, 2023, 10:13 a.m. |
| Last updated | Dec. 21, 2024, 3:46 a.m. |
| Headline | UNKNOWN |
| Title | Academy LMS 6.1 - Arbitrary File Upload - CXSecurity.com |
| Detected Hints/Tags/Attributes | 19/1/11 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://cxsecurity.com/issue/WLB-2023080077 |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 163 | ✔ | — | https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 15 | cxsecurity.com |
|
| Details | Domain | 1 | academylms.net |
|
| Details | Domain | 1 | demo.academylms.net |
|
| Details | Domain | 165 | www.w3.org |
|
| Details | File | 1 | async-upload.php |
|
| Details | File | 1 | ahacka.svg |
|
| Details | Url | 1 | https://academylms.net |
|
| Details | Url | 1 | https://demo.academylms.net |
|
| Details | Url | 11 | http://www.w3.org/graphics/svg/1.1/dtd/svg11.dtd |
|
| Details | Url | 23 | http://www.w3.org/2000/svg |
|
| Details | Url | 1 | https://website/wp-content/uploads/***/**/*****.svg |