Vulnerabilities > CVE-2003-0491 - Remote Security vulnerability in Mytutorials Tutorials 2.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The Tutorials 2.0 module in XOOPS and E-XOOPS allows remote attackers to execute arbitrary code by uploading a PHP file without a MIME image type, then directly accessing the uploaded file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |