Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2437

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-2437
Last Modified 05 Sep 2008 04:51:45
Published 03 Aug 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2437

Summary

Website Baker Project does not properly verify the file extensions of uploaded files, which allows remote attackers to upload and execute arbitrary PHP code.

Vulnerable Systems

Application

  • Website Baker


References

XF - website-baker-adminmedia-file-upload(21634)

BID - 14406

OSVDB - 18345

SECUNIA - 16263

BUGTRAQ - 20050728 Website Baker Project Multiple Vulnerabilities


Last Updated: 27 May 2016 10:40:31