Design/Logic Flaw

2015-07-2901:59:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.1%

LEMON-S PHP Gazou BBS plus before 2.36 allows remote attackers to upload arbitrary HTML documents via vectors involving a crafted image file.

CPENameOperatorVersion
gazou_bbs_plusle2.35

CPE	Name	Operator	Version
	gazou_bbs_plus	le	2.35

References

jvn.jp/en/jp/JVN86680970/995636/index.html

jvn.jp/en/jp/JVN86680970/index.html

jvndb.jvn.jp/jvndb/JVNDB-2015-000106