exploitDog

CVE-2005-1031

Опубликовано: 02 мая 2005

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

RUNCMS 1.1A, and possibly other products based on e-Xoops (exoops), when "Allow custom avatar upload" is enabled, does not properly verify uploaded files, which allows remote attackers to upload arbitrary files.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:e-xoops:e-xoops:1.05r3:*:*:*:*:*:*:*

cpe:2.3:a:runcms:runcms:1.1:*:*:*:*:*:*:*

cpe:2.3:a:runcms:runcms:1.1a:*:*:*:*:*:*:*

EPSS

Процентиль: 65%

0.00483

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-6h83-jc39-4w5p

github

почти 4 года назад

RUNCMS 1.1A, and possibly other products based on e-Xoops (exoops), when "Allow custom avatar upload" is enabled, does not properly verify uploaded files, which allows remote attackers to upload arbitrary files.

EPSS

Процентиль: 65%

0.00483

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other