Eduha Meeting - 'index.php' Arbitrary File Upload
| EKU-ID: 33308 | CVE: CVE-2006-3158;OSVDB-26627 | OSVDB-ID: |
| Author: Liz0ziM | Published: 2006-06-19 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 33308 | CVE: CVE-2006-3158;OSVDB-26627 | OSVDB-ID: |
| Author: Liz0ziM | Published: 2006-06-19 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/18499/info Eduha Meeting is prone to an arbitrary file-upload vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation; other attacks are also possible. http://www.example.com/path/index.php?act=add