Description

Unrestricted file upload vulnerability in the fileUnzip->unzip method in Dotclear before 2.10.3 allows remote authenticated users with permissions to manage media items to execute arbitrary code by uploading a ZIP file containing a file with a crafted extension, as demonstrated by .php.txt or .php%20.

Remediation

References

CVE-2016-7902

Related Vulnerabilities

osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43730)

Moodle Improper Input Validation Vulnerability (CVE-2009-1171)

WordPress Plugin Responsive WordPress Slider Cross-Site Scripting (2.2.0)

WordPress 4.4.x Directory Traversal (4.4 - 4.4.32)

WordPress Plugin WP Database Backup Cross-Site Request Forgery (5.1.2)

Severity

High

Classification

CVE-2016-7902 CWE-434 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities