CVE-2015-2079 | Usermin up to 1.659 uconfig_save.cgi sig_file_free neutralization of directives

Inserito da Angelo Barbosa | Apr 28, 2025 | CVE

A vulnerability, which was classified as very critical, has been found in Usermin up to 1.659. Affected by this issue is the function sig_file_free of the file uconfig_save.cgi. The manipulation leads to improper neutralization of directives in statically saved code (‘static code injection’).

This vulnerability is handled as CVE-2015-2079. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2015-2079 | Usermin up to 1.659 uconfig_save.cgi sig_file_free neutralization of directives

Post correlati

CVE-2023-41952 | WPManageNinja FluentForm Plugin up to 5.0.8 on WordPress authorization

CVE-2024-9872 | vcita Online Booking & Scheduling Calendar Plugin up to 4.5.1 on WordPress Setting vcita_save_user_data_callback cross site scripting

CVE-2024-26855 | Linux Kernel up to 6.7.9 ice_bridge_setlink null pointer dereference

CVE-2024-5745 | itsourcecode Bakery Online Ordering System 1.0 controller.php image unrestricted upload