Security Advisory

CVE-2006-4558

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-09-06 00:00:00

Last updated 2024-08-07 19:14:47

Assigner mitre

State PUBLISHED

Description

DeluxeBB 1.06 and earlier, when run on the Apache HTTP Server with the mod_mime module, allows remote attackers to execute arbitrary PHP code by uploading files with double extensions via the fileupload parameter in a newthread action in newpost.php.

← Browse all CVEs View on cve.org ↗