11 matches found
EUVD-2007-6640
Malware in sbrugna...
EUVD-2007-0127
Malware in sbrugna...
CVE-2007-6676
The default configuration of Uber Uploader UU 5.3.6 and earlier does not block uploads of 1 .html, 2 .asp, and other possibly dangerous extensions, which allows remote attackers to use these extensions in uploads via a uufileupload.php, related to uufileupload.js and b uberuploaderfile.php, relat...
CVE-2007-6676
The default configuration of Uber Uploader UU 5.3.6 and earlier does not block uploads of 1 .html, 2 .asp, and other possibly dangerous extensions, which allows remote attackers to use these extensions in uploads via a uufileupload.php, related to uufileupload.js and b uberuploaderfile.php, relat...
Default configuration
The default configuration of Uber Uploader UU 5.3.6 and earlier does not block uploads of 1 .html, 2 .asp, and other possibly dangerous extensions, which allows remote attackers to use these extensions in uploads via a uufileupload.php, related to uufileupload.js and b uberuploaderfile.php, relat...
CVE-2007-6676
The default configuration of Uber Uploader UU 5.3.6 and earlier does not block uploads of 1 .html, 2 .asp, and other possibly dangerous extensions, which allows remote attackers to use these extensions in uploads via a uufileupload.php, related to uufileupload.js and b uberuploaderfile.php, relat...
CVE-2007-6676
The CVE relates to Uber Uploader (UU) where the default configuration in UU 5.3.6 and earlier fails to block uploads of dangerous extensions (e.g., .html, .asp). This allows remote attackers to use these extensions in uploads via uu_file_upload.php (and related uu_file_upload.js) and uber_uploade...
CVE-2007-0123
Technical details for CVE-2007-0123 are not publicly available in the provided connected documents. Monitor for updates from vendors and CVE databases.
CVE-2007-0123
Unrestricted file upload vulnerability in Uber Uploader 4.2 allows remote attackers to upload and execute arbitrary PHP scripts by naming them with a .phtml extension, which bypasses the .php extension check but is still executable on some server configurations...
uberupload.txt
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ | |Uber Uploader 4.2 Arbitrary File Upload Vulnerability |Gamma Security Team |www.nullak.com |www.gammahack.com |Discovered:Null |Official Site:http://sourceforge.net/projects/uber-uploader |Download...
Uber Uploader 4.2 Arbitrary File Upload Vulnerability
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ | |Uber Uploader 4.2 Arbitrary File Upload Vulnerability |Gamma Security Team |www.nullak.com |www.gammahack.com |Discovered:Null |Official Site:http://sourceforge.net/projects/uber-uploader |Download...