Описание
connector.php in the fckeditor2rc2 addon in DoceboLMS 2.0.4 allows remote attackers to execute arbitrary PHP by using the FileUpload command to upload a file that appears to be an image but contains PHP script.
connector.php in the fckeditor2rc2 addon in DoceboLMS 2.0.4 allows remote attackers to execute arbitrary PHP by using the FileUpload command to upload a file that appears to be an image but contains PHP script.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-4094
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23519
- http://rgod.altervista.org/docebo204_xpl.html
- http://secunia.com/advisories/1015308
- http://secunia.com/advisories/17896
- http://securitytracker.com/id?1015308
- http://www.osvdb.org/21465
- http://www.securityfocus.com/bid/15744
- http://www.vupen.com/english/advisories/2005/2771
EPSS
Процентиль: 81%
0.01485
Низкий
CVE ID
Связанные уязвимости
nvd
около 20 лет назад
connector.php in the fckeditor2rc2 addon in DoceboLMS 2.0.4 allows remote attackers to execute arbitrary PHP by using the FileUpload command to upload a file that appears to be an image but contains PHP script.
EPSS
Процентиль: 81%
0.01485
Низкий