CVE-2005-1580

BoastMachine 3.0 is affected by an arbitrary file upload via users.ini.php due to improper file type restriction, enabling remote code execution. Connected records also indicate a vulnerability class lasting into newer versions; remediation noted in Nessus: upgrade to BoastMachine 3.1 or later to...

CVE-2005-1580

users.ini.php in BoastMachine 3.0 does not properly restrict the types of files that can be uploaded, which allows remote attackers to execute arbitrary code...