Unrestricted file upload

2008-07-1816:41:00

PRIOn knowledge base

www.prio-n.com

7.9 High

AI Score

Confidence

Low

0.105 Low

EPSS

Percentile

95.0%

JSON

Unrestricted file upload vulnerability in ecrire/images.php in Dotclear 1.2.7.1 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images.

CPENameOperatorVersion
dotcleareq1.2.3
dotclearle1.2.7
dotcleareq1.2.5
dotcleareq1.2.2
dotcleareq1.2.6
dotcleareq1.2.4
dotcleareq1.2.1

Name	Operator	Version
dotclear	eq	1.2.3
dotclear	le	1.2.7
dotclear	eq	1.2.5
dotclear	eq	1.2.2
dotclear	eq	1.2.6
dotclear	eq	1.2.4
dotclear	eq	1.2.1

References

osvdb.org/44441

secunia.com/advisories/29819

www.dotclear.net/blog/post/2008/04/18/Dotclear-128

www.dotclear.net/blog/post/2008/04/18/Gestionnaire-de-media-et-types-de-fichiers

www.openwall.com/lists/oss-security/2008/07/14/2

www.securityfocus.com/archive/1/490865/100/0/threaded

www.securityfocus.com/bid/28787

exchange.xforce.ibmcloud.com/vulnerabilities/41828

exchange.xforce.ibmcloud.com/vulnerabilities/44039