Vulnerabilities > CVE-2006-4922 - Unspecified vulnerability in Siteatschool
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN siteatschool
exploit available
Summary
Unrestricted file upload vulnerability in starnet/editors/htmlarea/popups/images.php in Site@School (S@S) 2.4.02 and earlier allows remote attackers to upload and execute arbitrary files with executable extensions.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Site@School <= 2.4.02 Advisory / Remote File Upload Exploit. CVE-2006-4920,CVE-2006-4921,CVE-2006-4922. Webapps exploit for php platform |
| file | exploits/php/webapps/2374.pl |
| id | EDB-ID:2374 |
| last seen | 2016-01-31 |
| modified | 2006-09-15 |
| platform | php |
| port | |
| published | 2006-09-15 |
| reporter | simo64 |
| source | https://www.exploit-db.com/download/2374/ |
| title | Site@School <= 2.4.02 - Remote File Upload Exploit |
| type | webapps |
References
- http://marc.info/?l=bugtraq&m=115869368313367&w=2
- http://marc.info/?l=bugtraq&m=115869368313367&w=2
- http://securitytracker.com/id?1016887
- http://securitytracker.com/id?1016887
- http://www.securityfocus.com/bid/20053
- http://www.securityfocus.com/bid/20053
- https://www.exploit-db.com/exploits/2374
- https://www.exploit-db.com/exploits/2374