Unrestricted file upload vulnerability in the Project issue tracking 4.7.0 up to and including 5.x prior to 20070123, a module for Drupal, allows remote authenticated users to execute arbitrary code by attaching a file with executable or multiple extensions to a project issue.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
drupal project 4.7_1.1 |
||
drupal project 4.7_2.1 |
||
drupal project 4.6_1.1 |
||
drupal project 4.7 |
||
drupal project issue tracking module 5.0 |
||
drupal project 5.0 |
||
drupal project issue tracking module 4.7 |
||
drupal project 4.6 |
||
drupal project issue tracking module 4.7_1.1 |
||
drupal project issue tracking module 4.7_2.1 |