VYPR
Unrated severityNVD Advisory· Published Nov 13, 2019· Updated Aug 6, 2024

CVE-2014-1214

CVE-2014-1214

Description

views/upload.php in the ProJoom Smart Flash Header (NovaSFH) component 3.0.2 and earlier for Joomla! allows remote attackers to upload and execute arbitrary files via a crafted (1) dest parameter and (2) arbitrary extension in the Filename parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Joomla!/Smart Flash Header (NovaSFH) componentdescription
  • ProJoom/NovaSFHllm-create
    Range: <=3.0.2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.