CVE

Id
31612  
CVE No.
CVE-2008-1495  
Status
Candidate  
Description
Unrestricted file upload vulnerability in administrer/produits.php in PEEL, possibly 3.x and earlier, allows remote authenticated administrators to upload and execute arbitrary PHP files via a modified content type in an ajout action, as demonstrated by (1) image/gif and (2) application/pdf.  
Phase
Assigned (20080325)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
339754 31612 CVE-2008-1495 MILW0RM:5281  View
339755 31612 CVE-2008-1495 URL:http://www.milw0rm.com/exploits/5281  View
339756 31612 CVE-2008-1495 MISC:http://realn.free.fr/releases/70207  View
339757 31612 CVE-2008-1495 BID:28346  View
339758 31612 CVE-2008-1495 URL:http://www.securityfocus.com/bid/28346  View
339759 31612 CVE-2008-1495 SECUNIA:29466  View
339760 31612 CVE-2008-1495 URL:http://secunia.com/advisories/29466  View
339761 31612 CVE-2008-1495 XF:peel-produits-file-upload(41354)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
47575 JVNDB-2008-002885 cPanel の frontend/x/manpage.html におけるクロスサイトスクリプティングの脆弱性 cPanel の frontend/x/manpage.html には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2008-1499 31612 4.3 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002885.html  View