Vulnerability Description
upload.cgi in Mega Upload Progress Bar before 1.45 allows remote attackers to copy or overwrite arbitrary files via unspecified parameters related to names of uploaded files.
CVSS Score
6.4
MEDIUM
AV:N/AC:L/Au:N/C:P/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Raditha Dissanayake | Mega Upload Progress Bar | 1.30 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/12993PatchVendor Advisory
- http://securitytracker.com/id?1011960
- http://sourceforge.net/project/shownotes.php?release_id=277989
- http://www.osvdb.org/11171
- http://www.raditha.com/blog/archives/000547.htmlPatch
- http://www.securityfocus.com/bid/11547
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17882
- http://secunia.com/advisories/12993PatchVendor Advisory
- http://securitytracker.com/id?1011960
- http://sourceforge.net/project/shownotes.php?release_id=277989
- http://www.osvdb.org/11171
- http://www.raditha.com/blog/archives/000547.htmlPatch
- http://www.securityfocus.com/bid/11547
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17882
FAQ
What is CVE-2004-2743?
CVE-2004-2743 is a vulnerability with a CVSS score of 6.4 (MEDIUM). upload.cgi in Mega Upload Progress Bar before 1.45 allows remote attackers to copy or overwrite arbitrary files via unspecified parameters related to names of uploaded files.
How severe is CVE-2004-2743?
CVE-2004-2743 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-2743?
Check the references section above for vendor advisories and patch information. Affected products include: Raditha Dissanayake Mega Upload Progress Bar.