NVD

Id
65652  
Name
CVE-2006-7109  
Description
Unrestricted file upload vulnerability in IMCE before 1.6, a Drupal module, allows remote authenticated users to upload arbitrary PHP code via a filename with a double extension such as .php.gif.  
Reject
 
CVSS Version
2  
CVSS Score
6.5  
Severity
Medium  
CVSS Base Score
6.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2007-03-05  
Modified Date
2011-03-07  
Seq
2006-7109  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
341994 65652 CVE-2006-7109 http://drupal.org/node/87101  View
341995 65652 CVE-2006-7109 ADV-2006-3892  View
341996 65652 CVE-2006-7109 imce-file-extension-file-upload(29325)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
59598 JVNDB-2006-001864 Drupal の IMCE モジュールにおける任意の PHP コードをアップロードされる脆弱性 Drupal の IMCE モジュールには、任意の PHP コードをアップロードされる脆弱性が存在します。 CVE-2006-7109 23211 CVE-2006-7109 65652 6.5 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001864.html 2006-10-02 2012-06-26 View