2 matches found
CVE-2004-1405
MediaWiki 1.3.8 and earlier, when used with Apache modmime, does not properly handle files with two file extensions, such as .php.rar, which allows remote attackers to upload and execute arbitrary code...
CVE-2004-1405
Affected software: MediaWiki 1.3.8 and earlier (with Apache mod_mime); also referenced as vulnerable in MediaWiki