phpok

2 exploits Active since May 2023
CVE-2023-33601 GITEE HIGH php
phpok 6.4.100 - Arbitrary File Upload via Admin Upload Endpoint
An arbitrary file upload vulnerability in /admin.php?c=upload of phpok v6.4.100 allows attackers to execute arbitrary code via a crafted PHP file.
110 stars
CVSS 8.8
CVE-2023-2888 GITEE MEDIUM php
PHPOK 6.4.100 - Unrestricted Upload
A vulnerability, which was classified as problematic, was found in PHPOK 6.4.100. This affects an unknown part of the file /admin.php?c=upload&f=zip&_noCache=0.1683794968. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The identifier VDB-229953 was assigned to this vulnerability.
110 stars
CVSS 4.7