Description
Unrestricted file upload vulnerability in the fileUnzip->unzip method in Dotclear before 2.10.3 allows remote authenticated users with permissions to manage media items to execute arbitrary code by uploading a ZIP file containing a file with a crafted extension, as demonstrated by .php.txt or .php%20.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP-RecentComments Information Disclosure (2.2.7)
WordPress Plugin Active Directory Integration/LDAP Integration Unspecified Vulnerability (3.6.95)
WordPress Plugin WordLift-AI powered SEO-Schema Cross-Site Scripting (3.37.1)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2022-37454)