|
|
CVE Reference: CVE-2007-6527 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-6527 |
|
|
Description: uploadimg.php in the Automatic Image Upload with Thumbnails (imgUpload) module 1.3.2 for PunBB only verifies the Content-type field of uploaded files, which allows remote attackers to upload and execute arbitrary content via a file with a (1) JPG, (2) GIF, or (3) PNG MIME type. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/39150 SAID Secunia Advisory: SA28138 OSVDB 42809 MISC http://www.fortconsult.net/images/pdf/advisories/punBB_imgUpload.pdf |
|
| Return to the previous page. |
