Описание
phpBB 2.0.21 does not properly handle pathnames ending in %00, which allows remote authenticated administrative users to upload arbitrary files, as demonstrated by a query to admin/admin_board.php with an avatar_path parameter ending in .php%00.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | DNE | |
| edgy | ignored | end of life, was needed |
| feisty | released | 2.0.21-6 |
| gutsy | released | 2.0.21-6 |
| hardy | released | 2.0.21-6 |
| intrepid | released | 2.0.21-6 |
| jaunty | DNE | |
| karmic | DNE | |
| upstream | needs-triage |
Показывать по
Ссылки на источники
4.6 Medium
CVSS2
Связанные уязвимости
phpBB 2.0.21 does not properly handle pathnames ending in %00, which allows remote authenticated administrative users to upload arbitrary files, as demonstrated by a query to admin/admin_board.php with an avatar_path parameter ending in .php%00.
phpBB 2.0.21 does not properly handle pathnames ending in %00, which a ...
phpBB 2.0.21 does not properly handle pathnames ending in %00, which allows remote authenticated administrative users to upload arbitrary files, as demonstrated by a query to admin/admin_board.php with an avatar_path parameter ending in .php%00.
4.6 Medium
CVSS2