CVE-2011-5148

Multiple incomplete blacklist vulnerabilities in the Simple File Upload (mod_simplefileuploadv1.3) module before 1.3.5 for Joomla! allow remote attackers to execute arbitrary code by uploading a file with a (1) php5, (2) php6, or (3) double (e.g. .php.jpg) extension, then accessing it via a direct request to the file in images/, as exploited in the wild in January 2012.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:wasen:mod_simplefileupload:1.0:*:*:*:*:*:*:*
cpe:2.3:a:wasen:mod_simplefileupload:*:*:*:*:*:*:*:*
cpe:2.3:a:wasen:mod_simplefileupload:1.1:*:*:*:*:*:*:*
cpe:2.3:a:joomla:joomla\!:*:*:*:*:*:*:*:*

Information

Published : 2012-08-31 14:55

Updated : 2017-08-28 18:30


NVD link : CVE-2011-5148

Mitre link : CVE-2011-5148


JSON object : View

Advertisement

dedicated server usa

Products Affected

wasen

  • mod_simplefileupload

joomla

  • joomla\!