Description

The media manager in Serendipity before 0.8 allows remote attackers to upload and execute arbitrary (1) .php or (2) .shtml files.

Remediation

References

CVE-2005-1451

Related Vulnerabilities

WordPress Plugin Social Media Widget Serving Spam (4.0)

osCommerce Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-43702)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-39200)

WordPress 5.8.x Multiple Vulnerabilities (5.8 - 5.8.5)

SugarCRM Other Vulnerability (CVE-2006-2460)

Severity

High

Classification

CVE-2005-1451

Tags

Missing Update Known Vulnerabilities