← Back to CVEs

CVE-2007-3163

N/A

Description

Incomplete blacklist vulnerability in the filemanager in Frederico Caldeira Knabben FCKeditor 2.4.2 allows remote attackers to upload arbitrary .php files via an alternate data stream syntax, as demonstrated by .php::$DATA filenames, a related issue to CVE-2006-0658.

CVE Details

CVSS v3.1 ScoreN/A

Published6/11/2007

Last Modified4/23/2026

Sourcenvd

Honeypot Sightings0

Affected Products

frederico_caldeira_knabben:fckeditor

References

http://ha.ckers.org/blog/20070606/additional-image-bypass-on-windows/(cve@mitre.org)

http://osvdb.org/37554(cve@mitre.org)

http://secunia.com/advisories/25719(cve@mitre.org)

http://secunia.com/advisories/25923(cve@mitre.org)

http://sourceforge.net/project/shownotes.php?release_id=520159(cve@mitre.org)

http://www.bitchiller.de/?p=20(cve@mitre.org)

http://www.securityfocus.com/bid/24510(cve@mitre.org)

https://exchange.xforce.ibmcloud.com/vulnerabilities/34982(cve@mitre.org)

http://ha.ckers.org/blog/20070606/additional-image-bypass-on-windows/(af854a3a-2127-422b-91ae-364da2661108)

http://osvdb.org/37554(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25719(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25923(af854a3a-2127-422b-91ae-364da2661108)

http://sourceforge.net/project/shownotes.php?release_id=520159(af854a3a-2127-422b-91ae-364da2661108)

http://www.bitchiller.de/?p=20(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/24510(af854a3a-2127-422b-91ae-364da2661108)

https://exchange.xforce.ibmcloud.com/vulnerabilities/34982(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.