Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2008-6178
HistoryFeb 19, 2009 - 4:00 p.m.

CVE-2008-6178

2009-02-1916:00:00
mitre
www.cve.org
2

7.7 High

AI Score

Confidence

Low

0.063 Low

EPSS

Percentile

93.7%

JSON

Unrestricted file upload vulnerability in editor/filemanager/browser/default/connectors/php/connector.php in FCKeditor 2.2, as used in Falt4 CMS, Nuke ET, and other products, allows remote attackers to execute arbitrary code by creating a file with PHP sequences preceded by a ZIP header, uploading this file via a FileUpload action with the application/zip content type, and then accessing this file via a direct request to the file in UserFiles/File/, probably a related issue to CVE-2005-4094. NOTE: some of these details are obtained from third party information.

Related

cve 2
nvd 2
ubuntucve 1
prion 1
seebug 1
cvelist 1
checkpoint_advisories 1
cve
cve
CVE-2008-6178
2009-02-19 16:30:00
CVE-2005-4094
2005-12-08 11:03:00
nvd
nvd
CVE-2008-6178
2009-02-19 16:30:00
CVE-2005-4094
2005-12-08 11:03:00
ubuntucve
ubuntucve
CVE-2008-6178
2009-02-19 00:00:00
prion
prion
Unrestricted file upload
2009-02-19 16:30:00
seebug
seebug
FCKeditor connector.php任意文件上传漏洞
2009-02-20 00:00:00
cvelist
cvelist
CVE-2005-4094
2005-12-08 11:00:00
checkpoint_advisories
checkpoint_advisories
Adobe ColdFusion FCKeditor Input Validation Flaw Arbitrary File Upload (CVE-2008-6178; CVE-2009-2265)
2014-11-17 00:00:00

7.7 High

AI Score

Confidence

Low

0.063 Low

EPSS

Percentile

93.7%

JSON
Related for CVELIST:CVE-2008-6178
cve2nvd2ubuntucve1prion1seebug1cvelist1checkpoint_advisories1