ID | CVE-2006-4581 | ||||||
Sažetak | Unrestricted file upload vulnerability in The Address Book 1.04e validates the Content-Type header but not the file extension, which allows remote attackers to upload arbitrary PHP scripts. | ||||||
Reference | |||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:L/Au:N/C:N/I:P/A:N | ||||||
Zadnje važnije ažuriranje | 20-07-2017 - 01:33 | ||||||
Objavljeno | 31-12-2006 - 05:00 |