CVE

Id
36939  
CVE No.
CVE-2008-6822  
Status
Candidate  
Description
Unrestricted file upload vulnerability in uploadp.php in New Earth Programming Team (NEPT) imgupload (aka Image Uploader) 1.0 allows remote attackers to execute arbitrary code by uploading a file with an executable extension and a modified content type, then accessing this file via a direct request, as demonstrated by an upload with an image/jpeg content type. NOTE: some of these details are obtained from third party information.  
Phase
Assigned (20090604)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
401904 36939 CVE-2008-6822 MILW0RM:6830  View
401905 36939 CVE-2008-6822 URL:http://www.milw0rm.com/exploits/6830  View
401906 36939 CVE-2008-6822 BID:31909  View
401907 36939 CVE-2008-6822 URL:http://www.securityfocus.com/bid/31909  View
401908 36939 CVE-2008-6822 OSVDB:49428  View
401909 36939 CVE-2008-6822 URL:http://osvdb.org/49428  View
401910 36939 CVE-2008-6822 SECUNIA:32412  View
401911 36939 CVE-2008-6822 URL:http://secunia.com/advisories/32412  View
401912 36939 CVE-2008-6822 XF:imgupload-uploadp-file-upload(46089)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
43296 JVNDB-2009-004303 MHF Media Pro の dhtml.pl におけるコマンドを実行される脆弱性 MHF Media Pro の dhtml.pl には、任意のコマンドを実行される脆弱性が存在します。 CVE-2008-6826 36939 10 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-004303.html  View