The Avatar upload feature in FUD Forum before 2.7.0 allows remote attackers to execute arbitrary PHP code
Reporter | Title | Published | Views | Family All 11 |
---|---|---|---|---|
![]() | Debian DSA-1063-1 : phpgroupware - missing input sanitising | 14 Oct 200600:00 | – | nessus |
![]() | FUDforum < 2.7.1 Avatar Upload Extension Validation Weakness Arbitrary Code Execution | 29 Aug 200500:00 | – | nessus |
![]() | [SECURITY] [DSA 1063-1] New phpgroupware packages fix execution of arbitrary web script code | 19 May 200622:07 | – | debian |
![]() | CVE-2005-2781 | 2 Sep 200500:00 | – | ubuntucve |
![]() | CVE-2005-2781 | 2 Sep 200504:00 | – | cvelist |
![]() | phpgroupware - missing input sanitising | 8 May 200600:00 | – | osv |
![]() | CVE-2005-2781 | 2 Sep 200523:03 | – | nvd |
![]() | Debian: Security Advisory (DSA-1063-1) | 17 Jan 200800:00 | – | openvas |
![]() | Debian Security Advisory DSA 1063-1 (phpgroupware) | 17 Jan 200800:00 | – | openvas |
![]() | HP-UX Update for Mozilla remote HPSBUX01133 | 5 May 200900:00 | – | openvas |
Source | Link |
---|---|
fudforum | www.fudforum.org/forum/index.php |
securityfocus | www.securityfocus.com/bid/14678 |
exchange | www.exchange.xforce.ibmcloud.com/vulnerabilities/22076 |
secunia | www.secunia.com/advisories/16627/ |
marc | www.marc.info/ |
securityfocus | www.securityfocus.com/archive/1/500406/100/0/threaded |
secunia | www.secunia.com/advisories/20203 |
debian | www.debian.org/security/2006/dsa-1063 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo