CVE-2007-5231 - CVE Reference - Advisories

CVE Reference: CVE-2007-5231

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-5231

Description: Unrestricted file upload vulnerability in admin/upload_files.php in Zomplog 3.8.1 and earlier allows remote authenticated administrators to upload and execute arbitrary .php files by sending a modified MIME type. NOTE: this can be exploited by unauthenticated attackers by leveraging CVE-2007-5230.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/36872 SAID Secunia Advisory: SA27028 MILW0RM http://milw0rm.com/exploits/4466 BID 25861

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	phpJobScheduler "installed_conf ig_file" File Inclusion Vulnerabilities

2.	Sun Solaris Kernel Covert Channel Security Bypass

3.	Subdreamer Light Global Variables SQL Injection Vulnerability

4.	Novell eDirectory Multiple Vulnerabilities

5.	HP TCP/IP Services for OpenVMS Finger Format String Vulnerability

6.	dotProject SQL Injection and Cross-Site Scripting

7.	OpenOffice "rtl_allocateMe mory()" Truncation Vulnerability

8.	Adium MSN SLP Message Integer Overflow Vulnerabilities

9.	Acoustica Mixcraft ".mx4" File Processing Buffer Overflow

10.	phpMyRealty "price_max" SQL Injection Vulnerability