Critical severity9.8NVD Advisory· Published Nov 13, 2019· Updated Jun 17, 2026
CVE-2019-18952
CVE-2019-18952
Description
SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, that is served over HTTP.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- SibSoft/Xfilesharingdescription
- Range: <=2.5.1
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/155324/Xfilesharing-2.5.1-Local-File-Inclusion-Shell-Upload.htmlnvdExploitIssue TrackingThird Party Advisory
- gist.github.com/pak0s/af9f640170aed335fdf6d110d468dbcenvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.