CVE-2005-1580

Опубликовано: 11 мая 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

users.ini.php in BoastMachine 3.0 does not properly restrict the types of files that can be uploaded, which allows remote attackers to execute arbitrary code.

Ссылки

http://secunia.com/advisories/15312
Vendor Advisory
http://www.kernelpanik.org/docs/kernelpanik/bmachines.txt
Vendor Advisory
http://www.osvdb.org/16334
Vendor Advisory
http://www.securityfocus.com/bid/13600
Vendor Advisory
http://secunia.com/advisories/15312
Vendor Advisory
http://www.kernelpanik.org/docs/kernelpanik/bmachines.txt
Vendor Advisory
http://www.osvdb.org/16334
Vendor Advisory
http://www.securityfocus.com/bid/13600
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:boastmachine:boastmachine:3.0:*:platinum:*:*:*:*:*

EPSS

Процентиль: 83%

0.01983

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-p63p-f4jm-qw85

github

почти 4 года назад