Vulnerabilities > CVE-2006-4875 - Input Validation vulnerability in Jupiter CMS

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
jupiter-cms
exploit available
NVD
Published: 2006-09-19
Updated: 2018-10-17

Summary

Unrestricted file upload vulnerability in modules/galleryuploadfunction.php in Jupiter CMS allows remote attackers to upload picture files, and possibly files with arbitrary extensions, to gallery/albums/public.

Vulnerable Configurations

Part Description Count
Application
Jupiter_Cms
1

Exploit-Db

descriptionJupiter CMS 1.1.4/1.1.5 galleryuploadfunction.php Arbitrary File Upload. CVE-2006-4875. Webapps exploit for php platform
idEDB-ID:28581
last seen2016-02-03
modified2006-09-15
published2006-09-15
reporterHACKERS PAL
sourcehttps://www.exploit-db.com/download/28581/
titleJupiter CMS 1.1.4/1.1.5 galleryuploadfunction.php Arbitrary File Upload

References