CVE-2018-9206: Unrestricted Upload of File with Dangerous Type
(updated )
Unauthenticated arbitrary file upload vulnerability in Blueimp jQuery-File-Upload <= v9.22.0
References
- www.securityfocus.com/bid/105679
- www.securityfocus.com/bid/106629
- www.vapidlabs.com/advisory.php?v=204
- github.com/advisories/GHSA-4cj8-g9cp-v5wr
- nvd.nist.gov/vuln/detail/CVE-2018-9206
- wpvulndb.com/vulnerabilities/9136
- www.exploit-db.com/exploits/45790/
- www.exploit-db.com/exploits/46182/
- www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html
Detect and mitigate CVE-2018-9206 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →