3 matches found
Unrestricted file upload
Unrestricted file upload vulnerability in editor/filemanager/browser/default/connectors/php/connector.php in FCKeditor 2.2, as used in Falt4 CMS, Nuke ET, and other products, allows remote attackers to execute arbitrary code by creating a file with PHP sequences preceded by a ZIP header, uploadin...
CVE-2005-4094
The CVE-2005-4094 entry describes a remote code execution in DoceboLMS 2.0.4 via the fckeditor2rc2 addon’s FileUpload command. A file that appears to be an image but contains PHP script could be uploaded through connector.php, enabling an attacker to execute arbitrary PHP on the server. The impac...
CVE-2005-4094
connector.php in the fckeditor2rc2 addon in DoceboLMS 2.0.4 allows remote attackers to execute arbitrary PHP by using the FileUpload command to upload a file that appears to be an image but contains PHP script...