CVE-2014-8770

Stephan Pringle Thursday, November 13, 2014

Unrestricted file upload vulnerability in magmi/web/magmi.php in the MAGMI (aka Magento Mass Importer) plugin 0.7.17a and earlier for Magento Community Edition (CE) allows remote authenticated users to execute arbitrary code by uploading a ZIP file that contains a PHP file, then accessing the PHP file via a direct request to it in magmi/plugins/.

The following two tabs change content below.
facebook-profile-picture
My Twitter profileMy Facebook profileMy LinkedIn profileMy Instagram profileMy Pinterest profileMy YouTube channel

Stephan Pringle

Technology Support Specialist at Sipylus
About The Author: Stephan Pringle is an Information Technology Support Specialist. He covers hardware and software and provides tips for you to troubleshoot and repair issues on your own. In his spare time, he writes articles about the State of New York on his Hackintosh and HackBook and that has helped him to become the top contributor of the New York City section of Yahoo! Answers.
facebook-profile-picture
My Twitter profileMy Facebook profileMy LinkedIn profileMy Instagram profileMy Pinterest profileMy YouTube channel

Latest posts by Stephan Pringle (see all)

Related posts:

  1. F1 Button Exploit
  2. Increase Memory Limit
  3. Invalid License File
  4. HNAP1
  5. Install a WordPress Plugin
  6. Computer Management
  7. Root SSH Direct Access
  8. Error Uploading a Thumbnail
  9. Find Your cPanel Version
  10. Inventor 2014
  11. Send a Direct Message on Twitter
  12. Avoiding Broken Links
  13. Automatically Apply WordPress Updates
  14. Fixing a 400 Bad Request
  15. Spoofed: You’ve received a new fax
  16. Index of /
  17. Hotel Kouris
  18. wp-inorms.php
  19. dl-skin.php
  20. Clear the Terminal or Bash History
facebook-profile-picture

Stephan Pringle

About The Author: Stephan Pringle is an Information Technology Support Specialist. He covers hardware and software and provides tips for you to troubleshoot and repair issues on your own. In his spare time, he writes articles about the State of New York on his Hackintosh and HackBook and that has helped him to become the top contributor of the New York City section of Yahoo! Answers.

Related Posts