Description

Unrestricted file upload vulnerability in the fileUnzip->unzip method in Dotclear before 2.10.3 allows remote authenticated users with permissions to manage media items to execute arbitrary code by uploading a ZIP file containing a file with a crafted extension, as demonstrated by .php.txt or .php%20.

Remediation

References

CVE-2016-7902

Related Vulnerabilities

WordPress Plugin WP-RecentComments Information Disclosure (2.2.7)

WordPress Plugin Active Directory Integration/LDAP Integration Unspecified Vulnerability (3.6.95)

WordPress Plugin WordLift-AI powered SEO-Schema Cross-Site Scripting (3.37.1)

PHP Integer Overflow or Wraparound Vulnerability (CVE-2022-37454)

WordPress Plugin MaxiBlocks: 2200+ Patterns, 190 Pages, 14.2K Icons & 100 Styles Arbitrary File Deletion (1.9.2)

Severity

High

Classification

CVE-2016-7902 CWE-434 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities