Tag: 2020

qdPM 9.1 – Remote Code Execution (RCE) (Authenticated)

A remote code execution (RCE) vulnerability exists in qdPM 9.1 and earlier. An attacker can upload a malicious PHP code file via the profile photo functionality, by leveraging a path traversal vulnerability in the users[‘photo_preview’] delete photo feature, allowing bypass of .htaccess protection. NOTE: this issue exists because of an incomplete fix for CVE-2015-3884. Reference:

November 21, 2022

qdPM 9.1 – Remote Code Execution (RCE) (Authenticated)