CVE-2006-2330
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
12/05/2006
Last modified:
18/10/2018
Description
PHP-Fusion 6.00.306 and earlier, running under Apache HTTP Server 1.3.27 and PHP 4.3.3, allows remote authenticated users to upload files of arbitrary types using a filename that contains two or more extensions that ends in an assumed-valid extension such as .gif, which bypasses the validation, as demonstrated by uploading then executing an avatar file that ends in ".php.gif" and contains PHP code in EXIF metadata.
Impact
Base Score 2.0
6.40
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:php_fusion:php_fusion:6.00.3:*:*:*:*:*:*:* | ||
cpe:2.3:a:php_fusion:php_fusion:6.00.105:*:*:*:*:*:*:* | ||
cpe:2.3:a:php_fusion:php_fusion:6.00.106:*:*:*:*:*:*:* | ||
cpe:2.3:a:php_fusion:php_fusion:6.00.107:*:*:*:*:*:*:* | ||
cpe:2.3:a:php_fusion:php_fusion:6.00.109:*:*:*:*:*:*:* | ||
cpe:2.3:a:php_fusion:php_fusion:6.00.110:*:*:*:*:*:*:* | ||
cpe:2.3:a:php_fusion:php_fusion:6.00.204:*:*:*:*:*:*:* | ||
cpe:2.3:a:php_fusion:php_fusion:6.00.206:*:*:*:*:*:*:* | ||
cpe:2.3:a:php_fusion:php_fusion:6.00.303:*:*:*:*:*:*:* | ||
cpe:2.3:a:php_fusion:php_fusion:6.00.304:*:*:*:*:*:*:* | ||
cpe:2.3:a:php_fusion:php_fusion:6.00.306:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://secunia.com/advisories/19992
- http://securityreason.com/securityalert/873
- http://www.osvdb.org/25537
- http://www.php-fusion.co.uk/news.php
- http://www.securityfocus.com/archive/1/433277/100/0/threaded
- http://www.securityfocus.com/bid/17898
- http://www.vupen.com/english/advisories/2006/1735
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26388