Описание
PHP Advanced Transfer Manager (phpATM) 1.21 allows remote attackers to upload arbitrary files via filenames containing multiple file extensions, as demonstrated using a filename ending in "php.ns", which allows execution of arbitrary PHP code.
PHP Advanced Transfer Manager (phpATM) 1.21 allows remote attackers to upload arbitrary files via filenames containing multiple file extensions, as demonstrated using a filename ending in "php.ns", which allows execution of arbitrary PHP code.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-1604
- http://seclists.org/lists/bugtraq/2005/May/0075.html
- http://secunia.com/advisories/15279
- http://www.osvdb.org/16160
- http://www.securityfocus.com/archive/1/415172
- http://www.securityfocus.com/archive/1/415300/30/0/threaded
- http://www.securityfocus.com/bid/13542
EPSS
Процентиль: 92%
0.07806
Низкий
CVE ID
Связанные уязвимости
nvd
больше 20 лет назад
PHP Advanced Transfer Manager (phpATM) 1.21 allows remote attackers to upload arbitrary files via filenames containing multiple file extensions, as demonstrated using a filename ending in "php.ns", which allows execution of arbitrary PHP code.
EPSS
Процентиль: 92%
0.07806
Низкий