Vulnerabilities > CVE-2006-7082 - File-Upload vulnerability in Rigter Portal System 1.0/2.0/3.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
rigter-portal-system
NVD
Published: 2007-03-02
Updated: 2017-07-29

Summary

Rigter Portal System (RPS) 1.0, 2.0, and 3.0 allows remote attackers to bypass authentication and upload arbitrary files via direct requests to (1) adm/photos/images.php and (2) adm/down/files.php.

Vulnerable Configurations

Part Description Count
Application
Rigter_Portal_System
3

References