PT-2005-3616 · Sphpblog · Simple Php Blog

0Xception

Published

2005-08-29

Updated

2017-07-11

CVE-2005-2733

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Simple PHP Blog (SPHPBlog) (affected versions not specified)

Description The issue is related to the upload img cgi.php file in Simple PHP Blog, which does not properly restrict file extensions of uploaded files. This could allow remote attackers to execute arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-2733

Affected Products

Simple Php Blog

PT-2005-3616 · Sphpblog · Simple Php Blog

CVE-2005-2733

Related Identifiers

Affected Products

References · 8