Lucene search

K

MitreCVELIST:CVE-2008-7209

HistorySep 11, 2009 - 4:00 p.m.

CVE-2008-7209

2009-09-1116:00:00

mitre

www.cve.org

3

AI Score

7.8

Confidence

Low

EPSS

0.115

Percentile

95.3%

Unrestricted file upload vulnerability in the add2 action in a_upload.php in OneCMS 2.4, and possibly earlier, allows remote attackers to execute arbitrary code by uploading a file with an executable extension and using a safe content type such as image/gif, then accessing it via a direct request to the file in an unspecified directory.

References

osvdb.org/51117

sourceforge.net/forum/forum.php?forum_id=774946

www.bugreport.ir/index_26.htm

www.securityfocus.com/archive/1/485837/100/200/threaded

www.securityfocus.com/archive/1/487136/100/200/threaded

www.securityfocus.com/bid/27158

www.vupen.com/english/advisories/2008/0081

exchange.xforce.ibmcloud.com/vulnerabilities/39485

www.exploit-db.com/exploits/4857

AI Score

7.8

Confidence

Low

EPSS

0.115

Percentile

95.3%

Related for CVELIST:CVE-2008-7209

prion1 nvd1 cve1 exploitdb1