Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2005-2614
Description:Discuz! 4.0 rc4 does not properly restrict types of files that are uploaded to the server, which allows remote attackers to execute arbitrary commands via a filename containing ".php.rar" or other multiple extensions that include .php.
Test IDs: 1.3.6.1.4.1.25623.1.0.19751  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2005-2614
BugTraq ID: 14564
http://www.securityfocus.com/bid/14564
http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0440.html
http://securitytracker.com/id?1014673
http://secunia.com/advisories/16433




© 1998-2024 E-Soft Inc. All rights reserved.