Vulnerabilities > CVE-2006-5016 - Unspecified vulnerability in E-Vision CMS 1.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN e-vision
exploit available
Summary
Unrestricted file upload vulnerability in admin/x_image.php in Szava Gyula and Csaba Tamas e-Vision CMS, probably 1.0, allows remote attackers to upload arbitrary files to the /imagebank directory.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | e-Vision CMS <= 2.02 (SQL/Upload/IG) Multiple Remote Vulnerabilities. CVE-2006-5016,CVE-2008-0856. Webapps exploit for php platform |
| id | EDB-ID:6191 |
| last seen | 2016-01-31 |
| modified | 2008-08-02 |
| published | 2008-08-02 |
| reporter | Khashayar Fereidani |
| source | https://www.exploit-db.com/download/6191/ |
| title | e-vision CMS <= 2.02 sql/upload/ig Multiple Vulnerabilities |
References
- http://secunia.com/advisories/21969
- http://secunia.com/advisories/21969
- http://securityreason.com/securityalert/1642
- http://securityreason.com/securityalert/1642
- http://www.securityfocus.com/archive/1/446706/100/0/threaded
- http://www.securityfocus.com/archive/1/446706/100/0/threaded
- http://www.securityfocus.com/bid/21047
- http://www.securityfocus.com/bid/21047
- http://www.vupen.com/english/advisories/2006/3764
- http://www.vupen.com/english/advisories/2006/3764
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29124
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29124