CVE-2006-6783

2006-12-2800:00:00

mitre

www.cve.org

7.1 High

AI Score

Confidence

Low

0.128 Low

EPSS

Percentile

95.5%

JSON

logahead UNU 1.0 before 20061226 allows remote attackers to upload arbitrary files via unspecified vectors related to plugins/widged/_widged.php (aka the WidgEd plugin), possibly because of an authentication bypass. NOTE: some of these details are obtained from third party information.

References

logahead.com/forums/comments.php?DiscussionID=216

secunia.com/advisories/23470

securityreason.com/securityalert/2071

securitytracker.com/id?1017444

www.securityfocus.com/archive/1/455307/100/0/threaded

www.securityfocus.com/bid/21743

www.vupen.com/english/advisories/2006/5184