3 matches found
CVE-2008-4767
Unrestricted file upload vulnerability in the DownloadsPlus module in PHP-Nuke allows remote attackers to execute arbitrary code by uploading a file with 1 .htm, 2 .html, or 3 .txt extensions, then accessing it via a direct request to the file. NOTE: the provenance of this information is unknown;...
CVE-2008-4767
The CVE-2008-4767 entry describes an unrestricted file upload vulnerability in the DownloadsPlus module of PHP-Nuke. An attacker could upload a file with .htm, .html, or .txt extensions and then access it directly to trigger arbitrary code execution. The description notes uncertainty about how .h...
CVE-2008-4767
creationtimestamp| type| source ---|---|--- 2008-04-24 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/31702...