Security Advisory

CVE-2006-4581

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-01-03 20:00:00

Last updated 2024-08-07 19:14:47

Assigner flexera

State PUBLISHED

Description

Unrestricted file upload vulnerability in The Address Book 1.04e validates the Content-Type header but not the file extension, which allows remote attackers to upload arbitrary PHP scripts.

← Browse all CVEs View on cve.org ↗