 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.51844 |
| Category: | CGI abuses |
| Title: | E107 Image Manager Unauthorized File Upload |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host, according to the version number, has a vulnerable version of e107 web content management software installed. The flaw allows attackers to upload files with arbitrary file extensions to your system. Exploitation requires that the attacker be able to access the Image Manager feature. Versions up to and including 0.616 are known to be vulnerable. Solution : Upgrade to a newer version when one becomes available. http://e107.org Risk factor : Medium CVSS Score: 5.0 |
| Cross-Ref: |
BugTraq ID: 12111 Common Vulnerability Exposure (CVE) ID: CVE-2004-2262 http://www.securityfocus.com/bid/12111 https://www.exploit-db.com/exploits/704 http://e107.org/comment.php?comment.news.672 http://www.osvdb.org/12586 http://securitytracker.com/id?1012657 http://secunia.com/advisories/13657 XForce ISS Database: e107-images-file-upload(18670) https://exchange.xforce.ibmcloud.com/vulnerabilities/18670 |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |