Vulnerability Description
Unrestricted file upload vulnerability in upload.php for Free Web Publishing System (FreeWPS), possibly 2.11 and earlier, allows remote attackers to upload and execute arbitrary PHP programs.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Justin White | Freewps | <= 2.11 |
References
- http://secunia.com/advisories/19343Vendor Advisory
- http://securityreason.com/securityalert/1746
- http://www.securityfocus.com/archive/1/447870/100/200/threaded
- http://www.securityfocus.com/bid/20494Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29379
- http://secunia.com/advisories/19343Vendor Advisory
- http://securityreason.com/securityalert/1746
- http://www.securityfocus.com/archive/1/447870/100/200/threaded
- http://www.securityfocus.com/bid/20494Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29379
FAQ
What is CVE-2006-5411?
CVE-2006-5411 is a vulnerability with a CVSS score of 7.5 (HIGH). Unrestricted file upload vulnerability in upload.php for Free Web Publishing System (FreeWPS), possibly 2.11 and earlier, allows remote attackers to upload and execute arbitrary PHP programs.
How severe is CVE-2006-5411?
CVE-2006-5411 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5411?
Check the references section above for vendor advisories and patch information. Affected products include: Justin White Freewps.