Unrated severityNVD Advisory· Published Mar 2, 2020· Updated Aug 5, 2024
CVE-2018-19798
CVE-2018-19798
Description
Fleetco Fleet Maintenance Management (FMM) 1.2 and earlier allows uploading an arbitrary ".php" file with the application/x-php Content-Type to the accidents_add.php?submit=1 URI, as demonstrated by the value_Images_1 field, which leads to remote command execution on the remote server. Any authenticated user can exploit this.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Fleetco/Fleet Maintenance Managementdescription
Patches
Vulnerability mechanics
References
1- exploit-db.com/exploits/45927mitreexploitx_refsource_EXPLOIT-DB
News mentions
0No linked articles in our index yet.