Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4182


Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4182
Last Modified 05 Sep 2008 05:27:37
Published 07 Aug 2007 09:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Unrestricted file upload vulnerability in index.php in WikiWebWeaver 1.1 and earlier allows remote attackers to upload and execute arbitrary PHP code via an upload action specifying a filename with a double extension such as .gif.php, which is accessible from data/documents/.

Vulnerable Systems


  • Wikiwebweaver 1.1


XF - wikiwebweaver-index-file-upload(35736)

BID - 25164

BUGTRAQ - 20070801 WikiWebWeaver 1.1 beta Upload Shell Vulnerability

SREASON - 2972

Last Updated: 27 May 2016 10:45:48