The Tutorials 2.0 module in XOOPS and E-XOOPS allows remote attackers to execute arbitrary code by uploading a PHP file without a MIME image type, then directly accessing the uploaded file.
References
Link | Resource |
---|---|
http://marc.info/?l=vuln-dev&m=105577873506147&w=2 |
Configurations
History
No history.
Information
Published : 2003-08-07 04:00
Updated : 2024-02-04 16:31
NVD link : CVE-2003-0491
Mitre link : CVE-2003-0491
CVE.ORG link : CVE-2003-0491
JSON object : View
Products Affected
mytutorials
- tutorials
CWE