Vulnerabilities > CVE-2005-2437 - Unspecified vulnerability in Website Baker Website Baker

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

website-baker

NVD

Published: 2005-08-03

Updated: 2024-11-20

Summary

Website Baker Project does not properly verify the file extensions of uploaded files, which allows remote attackers to upload and execute arbitrary PHP code.

Vulnerable Configurations

Part	Description	Count
Application	Website_Baker Website Baker Website Baker *	1

References

http://marc.info/?l=bugtraq&m=112260471228762&w=2
http://marc.info/?l=bugtraq&m=112260471228762&w=2
http://secunia.com/advisories/16263
http://secunia.com/advisories/16263
http://www.osvdb.org/18345
http://www.osvdb.org/18345
http://www.securityfocus.com/bid/14406
http://www.securityfocus.com/bid/14406
https://exchange.xforce.ibmcloud.com/vulnerabilities/21634
https://exchange.xforce.ibmcloud.com/vulnerabilities/21634