CVE List
Id | CVE No. | Status | Description | Phase | Votes | Comments | Actions |
---|---|---|---|---|---|---|---|
19466 | CVE-2006-3362 | Candidate | Unrestricted file upload vulnerability in connectors/php/connector.php in FCKeditor mcpuk file manager, as used in (1) Geeklog 1.4.0 through 1.4.0sr3, (2) toendaCMS 1.0.0 Shizouka Stable and earlier, (3) WeBid 0.5.4, and possibly other products, when installed on Apache with mod_mime, allows remote attackers to upload and execute arbitrary PHP code via a filename with a .php extension and a trailing extension that is allowed, such as .zip. | Assigned (20060706) | None (candidate not yet proposed) | View | |
20963 | CVE-2006-4859 | Candidate | Unrestricted file upload vulnerability in contact.html.php in the Contact (com_contact) component in Limbo (aka Lite Mambo) CMS 1.0.4.2L and earlier allows remote attackers to upload PHP code to the images/contact folder via a filename with a double extension in the contact_attach parameter in a contact option in index.php, which bypasses an insufficiently restrictive regular expression. | Assigned (20060919) | None (candidate not yet proposed) | View | |
30749 | CVE-2008-0632 | Candidate | Unrestricted file upload vulnerability in cp_upload_image.php in LightBlog 9.5 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the blog"s root directory. | Assigned (20080206) | None (candidate not yet proposed) | View | |
24496 | CVE-2007-1139 | Candidate | Unrestricted file upload vulnerability in Cromosoft Simple Plantilla PHP (SPP) allows remote attackers to upload arbitrary scripts via a filename with a double extension. | Assigned (20070227) | None (candidate not yet proposed) | View | |
79326 | CVE-2015-2049 | Candidate | Unrestricted file upload vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension. | Assigned (20150223) | None (candidate not yet proposed) | View |
Page 18733 of 20943, showing 5 records out of 104715 total, starting on record 93661, ending on 93665