← Voltar para CVEs

CVE-2007-3163

N/A

Descricao

Incomplete blacklist vulnerability in the filemanager in Frederico Caldeira Knabben FCKeditor 2.4.2 allows remote attackers to upload arbitrary .php files via an alternate data stream syntax, as demonstrated by .php::$DATA filenames, a related issue to CVE-2006-0658.

Detalhes CVE

Pontuacao CVSS v3.1N/A

Publicado6/11/2007

Ultima modificacao4/23/2026

Fontenvd

Avistamentos honeypot0

Produtos afetados

frederico_caldeira_knabben:fckeditor

Referencias

http://ha.ckers.org/blog/20070606/additional-image-bypass-on-windows/(cve@mitre.org)

http://osvdb.org/37554(cve@mitre.org)

http://secunia.com/advisories/25719(cve@mitre.org)

http://secunia.com/advisories/25923(cve@mitre.org)

http://sourceforge.net/project/shownotes.php?release_id=520159(cve@mitre.org)

http://www.bitchiller.de/?p=20(cve@mitre.org)

http://www.securityfocus.com/bid/24510(cve@mitre.org)

https://exchange.xforce.ibmcloud.com/vulnerabilities/34982(cve@mitre.org)

http://ha.ckers.org/blog/20070606/additional-image-bypass-on-windows/(af854a3a-2127-422b-91ae-364da2661108)

http://osvdb.org/37554(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25719(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/25923(af854a3a-2127-422b-91ae-364da2661108)

http://sourceforge.net/project/shownotes.php?release_id=520159(af854a3a-2127-422b-91ae-364da2661108)

http://www.bitchiller.de/?p=20(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/24510(af854a3a-2127-422b-91ae-364da2661108)

https://exchange.xforce.ibmcloud.com/vulnerabilities/34982(af854a3a-2127-422b-91ae-364da2661108)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.