CVE-2008-6951

2009-08-12T10:30:00
ID CVE-2008-6951
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:33:00

Description

MauryCMS 0.53.2 and earlier does not require administrative authentication for Editors/fckeditor/editor/filemanager/browser/default/browser.html, which allows remote attackers to upload arbitrary files via a direct request.