Unrestricted file upload

2010-06-1514:30:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.1%

JSON

Unrestricted file upload vulnerability in TomatoCMS 2.0.6 and earlier allows remote authenticated users, with certain privileges, to execute arbitrary PHP code by uploading an image file, and then accessing it via a direct request to the file in an unspecified directory.

CPENameOperatorVersion
tomatocmseq2.0.1
tomatocmseq2.0.0
tomatocmseq2.0.4
tomatocmseq2.0.3.1430
tomatocmseq2.0.3
tomatocmseq2.0.2
tomatocmsle2.0.6
tomatocmseq2.0.5
tomatocmseq2.0.3.1622

Name	Operator	Version
tomatocms	eq	2.0.1
tomatocms	eq	2.0.0
tomatocms	eq	2.0.4
tomatocms	eq	2.0.3.1430
tomatocms	eq	2.0.3
tomatocms	eq	2.0.2
tomatocms	le	2.0.6
tomatocms	eq	2.0.5
tomatocms	eq	2.0.3.1622