CVE-2005-0565 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2005-0565
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-0565

Description: The Announce module in phpWebSite 0.10.0 and earlier allows remote attackers to execute arbitrary PHP code by setting the Image field to reference a PHP file whose name contains a .gif.php extension.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/19482 ST 1013298 SAID Secunia Advisory: SA14399 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200503-04.xml BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=110928565530828&w=2

Return to the previous page.