CVE-2014-8770

Stephan Pringle Thursday, November 13, 2014

Unrestricted file upload vulnerability in magmi/web/magmi.php in the MAGMI (aka Magento Mass Importer) plugin 0.7.17a and earlier for Magento Community Edition (CE) allows remote authenticated users to execute arbitrary code by uploading a ZIP file that contains a PHP file, then accessing the PHP file via a direct request to it in magmi/plugins/.

The following two tabs change content below.
facebook-profile-picture
My Twitter profileMy Facebook profileMy LinkedIn profileMy Instagram profileMy Pinterest profileMy YouTube channel

Stephan Pringle

Technology Support Specialist at Sipylus
About The Author: Stephan Pringle is an Information Technology Support Specialist. He covers hardware and software and provides tips for you to troubleshoot and repair issues on your own. In his spare time, he writes articles about the State of New York on his Hackintosh and HackBook and that has helped him to become the top contributor of the New York City section of Yahoo! Answers.
facebook-profile-picture
My Twitter profileMy Facebook profileMy LinkedIn profileMy Instagram profileMy Pinterest profileMy YouTube channel

Latest posts by Stephan Pringle (see all)

Related posts:

  1. Install a WordPress Plugin
  2. F1 Button Exploit
  3. HNAP1
  4. Editing an .htaccess File
  5. The Validation of the PDF file Failed
  6. User-agent: Scrapy
  7. Apache Vulnerability in 2.2 & 2.4
  8. VMOaddin Has Fired an Exception
  9. Say Farewell to Orkut
  10. Converting a PDF File to an Excel File
  11. Looking Up Wi-Fi Passwords
  12. OneDrive Now Supports 10GB
  13. Setup a Google+ Account
  14. Remote Desktop Entries
  15. Error Uploading a Thumbnail
  16. Computer Management
  17. Remote Device Wipe Confirmation
  18. Virtuozzo Containers for Linux 4.7
  19. 49.0665 SERVICE ERROR
  20. Remote Server Administration Tools
facebook-profile-picture

Stephan Pringle

About The Author: Stephan Pringle is an Information Technology Support Specialist. He covers hardware and software and provides tips for you to troubleshoot and repair issues on your own. In his spare time, he writes articles about the State of New York on his Hackintosh and HackBook and that has helped him to become the top contributor of the New York City section of Yahoo! Answers.

Related Posts