5
CVE-2005-2437
- EPSS 1.35%
- Veröffentlicht 03.08.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:14:53
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginWebsite Baker Project does not properly verify the file extensions of uploaded files, which allows remote attackers to upload and execute arbitrary PHP code.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.35% | 0.679 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://marc.info/?l=bugtraq&m=112260471228762&w=2
http://secunia.com/advisories/16263
http://www.osvdb.org/18345
http://www.securityfocus.com/bid/14406
https://exchange.xforce.ibmcloud.com/vulnerabilities/21634