Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Incomplete blacklist vulnerability in upload_img_cgi.php in Simple PHP Blog before 0.5.1 allows remote attackers to upload dangerous files and execute arbitrary code, as demonstrated by a filename ending in .php. or a .htaccess file, a different vector than CVE-2005-2733. NOTE: the vulnerability was also present in a 0.5.1 download available in the early morning of 20070923. NOTE: the original 20070920 disclosure provided an incorrect filename, img_upload_cgi.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SimplePHPBlog img_upload_cgi.php 任意文件上传漏洞
Vulnerability Description
Simple PHP Blog中的upload_img_cgi.php存在不完全黑名单漏洞,远程攻击者可以上载危险文件和执行任意代码,例如一个以.htaccess或.php结尾的文件。
CVSS Information
N/A
Vulnerability Type
N/A