Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.1
CVSSv2

CVE-2006-3362

Published: 06/07/2006 Updated: 18/10/2018
CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9
VMScore: 515
Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Subscribe to Geeklog

Vulnerability Summary

Unrestricted file upload vulnerability in connectors/php/connector.php in FCKeditor mcpuk file manager, as used in (1) Geeklog 1.4.0 up to and including 1.4.0sr3, (2) toendaCMS 1.0.0 Shizouka Stable and previous versions, (3) WeBid 0.5.4, and possibly other products, when installed on Apache with mod_mime, allows remote malicious users to upload and execute arbitrary PHP code via a filename with a .php extension and a trailing extension that is allowed, such as .zip.

Vulnerable Product Search on Vulmon Subscribe to Product

geeklog geeklog 1.4.0_sr3

toenda software development toendacms 0.6.1

geeklog geeklog 1.4.0_sr1

geeklog geeklog 1.4.0_sr2

geeklog geeklog 1.4.0

toenda software development toendacms 1.0

toenda software development toendacms 0.6.2

toenda software development toendacms 0.7

Exploits

Exploit DB: GeekLog 1.4.0sr3 - 'f(u)ckeditor' Remote Code Execution
#!/usr/bin/php -q -d short_open_tag=on <? echo "Geeklog <= 140sr3 'f(u)ckeditor' remote commands execution\n"; echo "by rgod rgod@autisticiorg\n"; echo "site: retrogodaltervistaorg\n"; //works regardless of any phpini settings, //fckeditor (very old 'mcpuk' version) is enabled by default, //and connectorphp not protected, // ...

References

NVD-CWE-Otherhttp://www.geeklog.net/article.php/exploit-for-fckeditor-filemanagerhttp://www.geeklog.net/article.php/geeklog-1.4.0sr4http://www.securityfocus.com/bid/18767http://secunia.com/advisories/20886http://retrogod.altervista.org/toenda_100_shizouka_xpl.htmlhttp://www.securityfocus.com/bid/19072http://secunia.com/advisories/21117http://www.securityfocus.com/bid/30950http://www.vupen.com/english/advisories/2006/2611http://www.vupen.com/english/advisories/2006/2868https://exchange.xforce.ibmcloud.com/vulnerabilities/27799https://exchange.xforce.ibmcloud.com/vulnerabilities/27494https://exchange.xforce.ibmcloud.com/vulnerabilities/27469https://www.exploit-db.com/exploits/6344https://www.exploit-db.com/exploits/2035https://www.exploit-db.com/exploits/1964http://www.securityfocus.com/archive/1/440423/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/1964/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700CVE-2022-48689CVE-2024-27956CVE-2023-6363SQLNULL pointer dereferenceCVE-2023-41830CVE-2015-2051arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook