CVE-2007-1552

Name of the Vulnerable Software and Affected Versions MetaForum version 0.513 Beta

Description The issue concerns an unrestricted file upload vulnerability. It allows remote attackers to upload and execute arbitrary scripts by exploiting the fact that the software restricts file types based on the MIME type in the Content-type HTTP header. This can be done by using an image MIME type with a filename containing an executable extension, such as .php.

Recommendations For MetaForum version 0.513 Beta, consider restricting file uploads to only necessary and validated types, and ensure that the validation checks both the MIME type and the file extension to prevent uploading executable scripts. As a temporary workaround, consider disabling the file upload functionality in usercp.php until a proper fix is implemented.