3 matches found
CVE-2002-1460
L-Forum 2.40 and earlier does not properly verify whether a file was uploaded or if the associated variables were set by POST attachment, attachmentname, attachmentsize and attachmenttype, which allows remote attackers to read arbitrary files...
CVE-2002-1460
CVE-2002-1460 affects L-Forum 2.40 and earlier. The issue is improper verification of uploaded files and associated POST variables (attachment, attachment_name, attachment_size, attachment_type), enabling remote attackers to read arbitrary files. The connected documents confirm the affected softw...
CVE-2002-1460
L-Forum 2.40 and earlier does not properly verify whether a file was uploaded or if the associated variables were set by POST attachment, attachmentname, attachmentsize and attachmenttype, which allows remote attackers to read arbitrary files...