CVE-2006-4548

Name of the Vulnerable Software and Affected Versions e107 versions 0.75 and earlier

Description The issue allows remote attackers to execute arbitrary PHP code via the tinyMCE imglib include parameter in the /e107 handlers/tiny mce/plugins/ibrowser/ibrowser.php endpoint, as demonstrated by a multipart/form-data request. This is due to the software not properly unsetting variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value.

Recommendations For e107 versions 0.75 and earlier, consider disabling the tinyMCE imglib include parameter in the /e107 handlers/tiny mce/plugins/ibrowser/ibrowser.php endpoint until a proper fix is applied. Restrict access to the ibrowser.php file to minimize the risk of exploitation. Avoid using the tinyMCE imglib include parameter in the affected endpoint until the issue is resolved.