CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Phpwiki: >> Phpwiki >> 1.3.11p1 Security Vulnerabilities

CVE-2007-2025

Unrestricted file upload vulnerability in the UpLoad feature (lib/plugin/UpLoad.php) in PhpWiki 1.3.11p1 allows remote attackers to upload arbitrary PHP files with a double extension, as demonstrated by .php.3, which is interpreted by Apache as being a valid PHP file.

CVSS Score

7.5

EPSS Score

0.013

Published

2007-04-13

Page 1

Vulnerabilities

Vulnerable Software

Phpwiki: >> Phpwiki >> 1.3.11p1 Security Vulnerabilities

Products

Pricing

Contact Us