Lucene search
Ubuntu.comUB:CVE-2005-2781HistorySep 02, 2005 - 12:00 a.m.
CVE-2005-2781
2005-09-0200:00:00
ubuntu.com
ubuntu.com
11
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.016
Percentile
87.6%
The Avatar upload feature in FUD Forum before 2.7.0 does not properly
verify uploaded files, which allows remote attackers to execute arbitrary
PHP code via a file with a .php extension that contains image data followed
by PHP code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | egroupware | < 1.0.0.009.dfsg-3-4 | UNKNOWN |
| ubuntu | 6.10 | noarch | egroupware | < 1.0.0.009.dfsg-3-4 | UNKNOWN |
| ubuntu | 7.04 | noarch | egroupware | < 1.0.0.009.dfsg-3-4 | UNKNOWN |
| ubuntu | 6.06 | noarch | phpgroupware | < 0.9.16.010-1 | UNKNOWN |
| ubuntu | 6.10 | noarch | phpgroupware | < 0.9.16.010-1 | UNKNOWN |
| ubuntu | 7.04 | noarch | phpgroupware | < 0.9.16.010-1 | UNKNOWN |
Related
debian
debian
cvelist
cvelist
CVE-2005-2781
2005-09-02 04:00:00
osv
osv
phpgroupware - missing input sanitising
2006-05-08 00:00:00
nessus
nessus
Debian DSA-1063-1 : phpgroupware - missing input sanitising
2006-10-14 00:00:00
cve
cve
CVE-2005-2781
2005-09-02 23:03:00
openvas
openvas
Debian: Security Advisory (DSA-1063-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 1063-1 (phpgroupware)
2008-01-17 00:00:00
HP-UX Update for Mozilla remote HPSBUX01133
2009-05-05 00:00:00
nvd
nvd
CVE-2005-2781
2005-09-02 23:03:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.016
Percentile
87.6%
Related for UB:CVE-2005-2781