Incomplete blacklist vulnerability in the filemanager in Frederico Caldeira Knabben FCKeditor 2.4.2 allows remote malicious users to upload arbitrary .php files via an alternate data stream syntax, as demonstrated by .php::$DATA filenames, a related issue to CVE-2006-0658.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
frederico caldeira knabben fckeditor 2.4.2 |