CVE-2006-1371

2006-03-23T18:06:00
ID CVE-2006-1371
Type cve
Reporter NVD
Modified 2017-10-10T21:30:44

Description

Laurentiu Matei eXpandable Home Page (XHP) CMS 0.5 and earlier allows remote authenticated users to use the HTMLArea FileManager plugin to upload and execute arbitrary PHP files using (1) manager.php, (2) standalonemanager.php, and (3) images.php.