7.5
CVE-2005-2733
- EPSS 50.89%
- Veröffentlicht 30.08.2005 11:45:00
- Zuletzt bearbeitet 16.06.2026 22:15:34
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Loginupload_img_cgi.php in Simple PHP Blog (SPHPBlog) does not properly restrict file extensions of uploaded files, which could allow remote attackers to execute arbitrary code.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Alexander Palmo ≫ Simple Php Blog Version0.4.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 50.89% | 0.988 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=112511159821143&w=2
http://secunia.com/advisories/16598/
http://www.securityfocus.com/bid/14667
https://exchange.xforce.ibmcloud.com/vulnerabilities/22012