CVE List

Id CVE No. Status Description Phase Votes Comments Actions
30773  CVE-2008-0656  Candidate  Unrestricted file upload vulnerability in dmclTrace.jsp in EMC Documentum Administrator 5.3.0.313 and Webtop 5.3.0.317 allows remote attackers to overwrite arbitrary files via the filename attribute.  Assigned (20080207)  None (candidate not yet proposed)    View
56820  CVE-2012-3577  Candidate  Unrestricted file upload vulnerability in doupload.php in the Nmedia Member Conversation plugin before 1.4 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in wp-content/uploads/user_uploads.  Assigned (20120616)  None (candidate not yet proposed)    View
43580  CVE-2010-0996  Candidate  Unrestricted file upload vulnerability in e107 before 0.7.20 allows remote authenticated users to execute arbitrary code by uploading a .php.filetypesphp file. NOTE: the vendor disputes the significance of this issue, noting that "an odd set of preferences and a missing file" are required.  Assigned (20100318)  None (candidate not yet proposed)    View
33349  CVE-2008-3232  Candidate  Unrestricted file upload vulnerability in ecrire/images.php in Dotclear 1.2.7.1 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images.  Assigned (20080718)  None (candidate not yet proposed)    View
36801  CVE-2008-6684  Candidate  Unrestricted file upload vulnerability in editimage.php in Apartment Search Script allows remote attackers to execute arbitrary code by uploading a file with an executable extension and a GIF header, then accessing this file via a direct request to a renamed file in Member_Admin/logo/.  Assigned (20090410)  None (candidate not yet proposed)    View

Page 18734 of 20943, showing 5 records out of 104715 total, starting on record 93666, ending on 93670

Actions