CVE-2010-1514

{"id": "CVE-2010-1514", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2010-06-15T14:30:01.127", "references": [{"url": "http://holisticinfosec.org/content/view/148/45/", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://secunia.com/advisories/39680", "tags": ["Vendor Advisory"], "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://secunia.com/secunia_research/2010-57/", "tags": ["Vendor Advisory"], "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://www.securityfocus.com/bid/40544", "source": "PSIRT-CNA@flexerasoftware.com"}, {"url": "http://holisticinfosec.org/content/view/148/45/", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/39680", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/secunia_research/2010-57/", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/40544", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Unrestricted file upload vulnerability in TomatoCMS 2.0.6 and earlier allows remote authenticated users, with certain privileges, to execute arbitrary PHP code by uploading an image file, and then accessing it via a direct request to the file in an unspecified directory."}, {"lang": "es", "value": "Vulnerabilidad de subida de archivos sin restricciones en TomatoCMS v2.0.6 y anteriores permite a usuarios remotos autenticados, con ciertos privilegios, ejecutar c\u00f3digo PHP de su elecci\u00f3n mediante la subida de un archivo de imagen y el posterior acceso al mismo, a trav\u00e9s de una solicitud directa al archivo en un directorio especificado."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:tomatocms:tomatocms:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A3B2955-342C-49B4-915D-EDBDB966C62F", "versionEndIncluding": "2.0.6"}, {"criteria": "cpe:2.3:a:tomatocms:tomatocms:2.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C22F58CF-182C-459F-9935-B3A729413160"}, {"criteria": "cpe:2.3:a:tomatocms:tomatocms:2.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E018B4F5-A3A6-4D0F-BD89-59743A38BEF3"}, {"criteria": "cpe:2.3:a:tomatocms:tomatocms:2.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB0D9BD7-3C4A-478D-B378-E7E7E8014C3A"}, {"criteria": "cpe:2.3:a:tomatocms:tomatocms:2.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9EDC1737-FD83-40FF-A3AB-D4FFF524B8C3"}, {"criteria": "cpe:2.3:a:tomatocms:tomatocms:2.0.3.1430:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FFA24A70-6715-48EF-9D3E-51EFC3DD8CDC"}, {"criteria": "cpe:2.3:a:tomatocms:tomatocms:2.0.3.1622:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C8D5050-CC12-423C-A1A0-8410B2818D24"}, {"criteria": "cpe:2.3:a:tomatocms:tomatocms:2.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53B3A38E-B871-4A1A-A52C-FF42222302CD"}, {"criteria": "cpe:2.3:a:tomatocms:tomatocms:2.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "58E5EFB3-4FA4-46AE-A948-7606DD7DDE44"}], "operator": "OR"}]}], "sourceIdentifier": "PSIRT-CNA@flexerasoftware.com"}