← Volver a CVEs

CVE-2008-6513

N/A

Descripcion

Unrestricted file upload vulnerability in saa.php in Andy's PHP Knowledgebase (aphpkb) 0.92.9 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a link that is listed by authors.php.

Detalles CVE

Puntuacion CVSS v3.1N/A

Publicado3/24/2009

Ultima modificacion4/23/2026

Fuentenvd

Avistamientos honeypot0

Productos afectados

aphpkb:aphpkb

Debilidades (CWE)

CWE-94

Referencias

http://secunia.com/advisories/34476(cve@mitre.org)

http://sourceforge.net/project/shownotes.php?group_id=113755&release_id=667918(cve@mitre.org)

http://www.securityfocus.com/bid/32559(cve@mitre.org)

https://exchange.xforce.ibmcloud.com/vulnerabilities/46977(cve@mitre.org)

https://www.exploit-db.com/exploits/7312(cve@mitre.org)

http://secunia.com/advisories/34476(af854a3a-2127-422b-91ae-364da2661108)

http://sourceforge.net/project/shownotes.php?group_id=113755&release_id=667918(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/32559(af854a3a-2127-422b-91ae-364da2661108)

https://exchange.xforce.ibmcloud.com/vulnerabilities/46977(af854a3a-2127-422b-91ae-364da2661108)

https://www.exploit-db.com/exploits/7312(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.