CVE-2006-5016

EPSS 2.6%

Unrestricted file upload vulnerability in admin/x_image.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote attackers to upload arbitrary files to the /imagebank directory.

Affected products

n/a · n/a

public PoCs found — 1

exploitdbwww.exploit-db.com/exploits/6191unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/21969 http://securityreason.com/securityalert/1642 https://exchange.xforce.ibmcloud.com/vulnerabilities/29124 http://www.securityfocus.com/archive/1/446706/100/0/threaded http://www.securityfocus.com/bid/21047 http://www.vupen.com/english/advisories/2006/3764