CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-13187

The Rich Text Formatter (Redactor) extension through v1.1.1 for Symphony CMS has an Unauthenticated arbitrary file upload vulnerability in content.fileupload.php and content.imageupload.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 76.5%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2019-13187

Symphonyextensions » Rich Text Formatter » Version: N/A

cpe:2.3:a:symphonyextensions:rich_text_formatter:-
Symphonyextensions » Rich Text Formatter » Version: 0.9.0

cpe:2.3:a:symphonyextensions:rich_text_formatter:0.9.0
Symphonyextensions » Rich Text Formatter » Version: 1.0.0

cpe:2.3:a:symphonyextensions:rich_text_formatter:1.0.0
Symphonyextensions » Rich Text Formatter » Version: 1.1.0

cpe:2.3:a:symphonyextensions:rich_text_formatter:1.1.0
Symphonyextensions » Rich Text Formatter » Version: 1.1.1

cpe:2.3:a:symphonyextensions:rich_text_formatter:1.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-13187

Products

Pricing

Contact Us