Lucene search
PRIOn knowledge basePRION:CVE-2007-0123HistoryJan 09, 2007 - 2:28 a.m.
Unrestricted file upload
2007-01-0902:28:00
PRIOn knowledge base
www.prio-n.com
2
7.6 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
81.8%
Unrestricted file upload vulnerability in Uber Uploader 4.2 allows remote attackers to upload and execute arbitrary PHP scripts by naming them with a .phtml extension, which bypasses the .php extension check but is still executable on some server configurations.
| CPE | Name | Operator | Version |
|---|---|---|---|
| uber_uploader | eq | 4.2 |
Related
cve
cve
CVE-2007-0123
2007-01-09 02:28:00
CVE-2007-6676
2008-01-08 19:46:00
prion
prion
Default configuration
2008-01-08 19:46:00
securityvulns
securityvulns
7.6 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
81.8%
Related for PRION:CVE-2007-0123