NVD

Id
52729  
Name
CVE-2007-0505  
Description
Unrestricted file upload vulnerability in the Project issue tracking 4.7.0 through 5.x before 20070123, a module for Drupal, allows remote authenticated users to execute arbitrary code by attaching a file with executable or multiple extensions to a project issue.  
Reject
 
CVSS Version
2  
CVSS Score
8.5  
Severity
High  
CVSS Base Score
8.5  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-01-25  
Modified Date
2011-03-07  
Seq
2007-0505  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
266561 52729 CVE-2007-0505 http://drupal.org/node/112146  View
266562 52729 CVE-2007-0505 22224  View
266563 52729 CVE-2007-0505 ADV-2007-0312  View
266564 52729 CVE-2007-0505 projecttracking-extension-file-upload(31729)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
52754 JVNDB-2007-001446 Drupal 用の Project issue tracking モジュールにおける任意のコードを実行される脆弱性 Drupal 用の Project issue tracking モジュールには、無制限にファイルをアップロードされる不備があるため、任意のコードを実行される脆弱性が存在します。 CVE-2007-0505 23860 CVE-2007-0505 52729 8.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001446.html 2007-01-23 2012-06-26 View