{"uuid": "c4354044-7f95-4313-8974-a0affe4d873f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12185", "type": "seen", "source": "https://t.me/cve_mitre_org/75", "content": "CVE-2019-12185 eLabFTW 1.8.5 is vulnerable to arbitrary file uploads via the /app/controllers/EntityController.php component. This may result in remote command execution. An attacker can use a user account to fully compromise the system using a POST req... https://t.co/DCaf9SUzTR\u2014 CVE (@CVEnew) May 19, 2019\n\nMay 20, 2019 at 02:45AM\nvia Twitter https://twitter.com/CVEnew", "creation_timestamp": "2019-05-19T23:47:03.000000Z"}