PT-2003-1197 · L Forum · L-Forum

Publicado

2003-03-18

Atualizado

2008-09-05

CVE-2002-1460

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions L-Forum versions 2.40 and earlier

Description The issue allows remote attackers to read arbitrary files due to improper verification of file uploads and associated variables set by POST, including attachment, attachment name, attachment size, and attachment type.

Recommendations For L-Forum versions 2.40 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2002-1460

Produtos afetados

L-Forum

PT-2003-1197 · L Forum · L-Forum

CVE-2002-1460

Identificadores relacionados

Produtos afetados

Referências · 6