Security Advisory

CVE-2006-0936

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-02-28 11:00:00

Last updated 2024-08-07 16:56:15

Assigner mitre

State PUBLISHED

Description

Free Host Shop Website Generator 3.3 allows remote authenticated users with administrative privileges to upload and execute arbitrary files via a formname parameter with a filename containing a dangerous file extension and a trailing %00.

← Browse all CVEs View on cve.org ↗