Lucene search

[email protected]NVD:CVE-2005-2781

HistorySep 02, 2005 - 11:03 p.m.

CVE-2005-2781

2005-09-0223:03:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.016

Percentile

87.6%

JSON

The Avatar upload feature in FUD Forum before 2.7.0 does not properly verify uploaded files, which allows remote attackers to execute arbitrary PHP code via a file with a .php extension that contains image data followed by PHP code.

Affected configurations

Nvd

Node

ilia_alshanetskyfudforumMatch2.1.0

ilia_alshanetskyfudforumMatch2.1.1

ilia_alshanetskyfudforumMatch2.1.2

ilia_alshanetskyfudforumMatch2.1.3

ilia_alshanetskyfudforumMatch2.2.0

ilia_alshanetskyfudforumMatch2.2.1

ilia_alshanetskyfudforumMatch2.2.2

ilia_alshanetskyfudforumMatch2.2.3

ilia_alshanetskyfudforumMatch2.2.4

ilia_alshanetskyfudforumMatch2.2.5

ilia_alshanetskyfudforumMatch2.3.0

ilia_alshanetskyfudforumMatch2.3.1

ilia_alshanetskyfudforumMatch2.3.2

ilia_alshanetskyfudforumMatch2.3.3

ilia_alshanetskyfudforumMatch2.3.4

ilia_alshanetskyfudforumMatch2.3.5

ilia_alshanetskyfudforumMatch2.3.6

ilia_alshanetskyfudforumMatch2.3.7

ilia_alshanetskyfudforumMatch2.3.8

ilia_alshanetskyfudforumMatch2.5.0

ilia_alshanetskyfudforumMatch2.5.1

ilia_alshanetskyfudforumMatch2.5.2

ilia_alshanetskyfudforumMatch2.6.0

ilia_alshanetskyfudforumMatch2.6.1

ilia_alshanetskyfudforumMatch2.6.2

ilia_alshanetskyfudforumMatch2.6.3

ilia_alshanetskyfudforumMatch2.6.4

ilia_alshanetskyfudforumMatch2.6.5

ilia_alshanetskyfudforumMatch2.6.6

ilia_alshanetskyfudforumMatch2.6.7

ilia_alshanetskyfudforumMatch2.6.8

ilia_alshanetskyfudforumMatch2.6.9

ilia_alshanetskyfudforumMatch2.6.10

ilia_alshanetskyfudforumMatch2.6.11

ilia_alshanetskyfudforumMatch2.6.12

ilia_alshanetskyfudforumMatch2.6.13

ilia_alshanetskyfudforumMatch2.6.14

ilia_alshanetskyfudforumMatch2.6.15

ilia_alshanetskyfudforumMatch2.7.0

VendorProductVersionCPE
ilia_alshanetskyfudforum2.1.0cpe:2.3:a:ilia_alshanetsky:fudforum:2.1.0:*:*:*:*:*:*:*
ilia_alshanetskyfudforum2.1.1cpe:2.3:a:ilia_alshanetsky:fudforum:2.1.1:*:*:*:*:*:*:*
ilia_alshanetskyfudforum2.1.2cpe:2.3:a:ilia_alshanetsky:fudforum:2.1.2:*:*:*:*:*:*:*
ilia_alshanetskyfudforum2.1.3cpe:2.3:a:ilia_alshanetsky:fudforum:2.1.3:*:*:*:*:*:*:*
ilia_alshanetskyfudforum2.2.0cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.0:*:*:*:*:*:*:*
ilia_alshanetskyfudforum2.2.1cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.1:*:*:*:*:*:*:*
ilia_alshanetskyfudforum2.2.2cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.2:*:*:*:*:*:*:*
ilia_alshanetskyfudforum2.2.3cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.3:*:*:*:*:*:*:*
ilia_alshanetskyfudforum2.2.4cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.4:*:*:*:*:*:*:*
ilia_alshanetskyfudforum2.2.5cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ilia_alshanetsky	fudforum	2.1.0	cpe:2.3:a:ilia_alshanetsky:fudforum:2.1.0:::::::*
ilia_alshanetsky	fudforum	2.1.1	cpe:2.3:a:ilia_alshanetsky:fudforum:2.1.1:::::::*
ilia_alshanetsky	fudforum	2.1.2	cpe:2.3:a:ilia_alshanetsky:fudforum:2.1.2:::::::*
ilia_alshanetsky	fudforum	2.1.3	cpe:2.3:a:ilia_alshanetsky:fudforum:2.1.3:::::::*
ilia_alshanetsky	fudforum	2.2.0	cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.0:::::::*
ilia_alshanetsky	fudforum	2.2.1	cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.1:::::::*
ilia_alshanetsky	fudforum	2.2.2	cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.2:::::::*
ilia_alshanetsky	fudforum	2.2.3	cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.3:::::::*
ilia_alshanetsky	fudforum	2.2.4	cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.4:::::::*
ilia_alshanetsky	fudforum	2.2.5	cpe:2.3:a:ilia_alshanetsky:fudforum:2.2.5:::::::*