CVE-2007-5188

2007-10-03T10:17:00
ID CVE-2007-5188
Type cve
Reporter NVD
Modified 2011-03-07T22:00:16

Description

Unspecified vulnerability in the XOOPS uploader class in Xoops 2.0.17.1-RC1 and earlier allows remote attackers to upload arbitrary files via unspecified vectors related to improper upload configuration settings in class/uploader.php and class/mimetypes.inc.php, possibly an incomplete blacklist that omits the .php4 extension.