CVE

Id
26789  
CVE No.
CVE-2007-3432  
Status
Candidate  
Description
Unrestricted file upload vulnerability in admin/images.php in Pluxml 0.3.1 allows remote attackers to upload and execute arbitrary PHP code via a .jpg filename.  
Phase
Assigned (20070626)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
272968 26789 CVE-2007-3432 BUGTRAQ:20070624 Pluxml 0.3.1 Remote Code Execution Exploit  View
272969 26789 CVE-2007-3432 URL:http://www.securityfocus.com/archive/1/archive/1/472205/100/0/threaded  View
272970 26789 CVE-2007-3432 MILW0RM:4096  View
272971 26789 CVE-2007-3432 URL:http://www.milw0rm.com/exploits/4096  View
272972 26789 CVE-2007-3432 OSVDB:42420  View
272973 26789 CVE-2007-3432 URL:http://osvdb.org/42420  View
272974 26789 CVE-2007-3432 XF:pluxml-images-file-upload(35016)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
55355 JVNDB-2007-004047 Pharmacy System の index.php における重要な情報を取得される脆弱性 Pharmacy System の index.php には、エラーメッセージ内にテーブル接頭辞を表示する不備があるため、重要な情報を取得される脆弱性が存在します。 CVE-2007-3434 26789 5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004047.html  View