CVE-2005-1580

2022-10-0316:22:43

mitre

www.cve.org

boastmachine 3.0

users.ini.php

arbitrary code execution

file upload restriction

7.4 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.2%

JSON

users.ini.php in BoastMachine 3.0 does not properly restrict the types of files that can be uploaded, which allows remote attackers to execute arbitrary code.

References

secunia.com/advisories/15312

www.kernelpanik.org/docs/kernelpanik/bmachines.txt

www.osvdb.org/16334

www.securityfocus.com/bid/13600