The media manager in Serendipity prior to 0.8 allows remote malicious users to upload and execute arbitrary (1) .php or (2) .shtml files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
s9y serendipity 0.4 |
||
s9y serendipity 0.7 |
||
s9y serendipity 0.7 beta1 |
||
s9y serendipity 0.8 beta 6 |
||
s9y serendipity 0.7.1 |
||
s9y serendipity 0.5 pl1 |
||
s9y serendipity 0.7 beta3 |
||
s9y serendipity 0.7 beta4 |
||
s9y serendipity 0.8 beta 5 |
||
s9y serendipity 0.3 |
||
s9y serendipity 0.6 pl3 |
||
s9y serendipity 0.7 beta2 |
||
s9y serendipity 0.7 rc1 |