VYPR
High severity8.8NVD Advisory· Published Dec 27, 2017· Updated Jun 17, 2026

CVE-2017-17874

CVE-2017-17874

Description

Vanguard Marketplace Digital Products PHP 1.4 allows arbitrary file upload via an "Add a new product" or "Add a product preview" action, which can make a .php file accessible under a uploads/ URI.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.