CVE-2006-5411

Опубликовано: 20 окт. 2006

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Unrestricted file upload vulnerability in upload.php for Free Web Publishing System (FreeWPS), possibly 2.11 and earlier, allows remote attackers to upload and execute arbitrary PHP programs.

Ссылки

http://secunia.com/advisories/19343
Vendor Advisory
http://securityreason.com/securityalert/1746
http://www.securityfocus.com/archive/1/447870/100/200/threaded
http://www.securityfocus.com/bid/20494
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/29379
http://secunia.com/advisories/19343
Vendor Advisory
http://securityreason.com/securityalert/1746
http://www.securityfocus.com/archive/1/447870/100/200/threaded
http://www.securityfocus.com/bid/20494
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/29379

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:justin_white:freewps:*:*:*:*:*:*:*:*

Версия до 2.11 (включая)

EPSS

Процентиль: 88%

0.03876

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-f39c-vhw5-3cc3

github

почти 4 года назад