Vulnerability Description
Unrestricted file upload vulnerability in gallery.php in phpx 3.5.15 allows remote attackers to upload and execute arbitrary PHP scripts via an addImage action, which places scripts into the gallery/shelties/ directory.
CVSS Score
6.8
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Phpx | Phpx | <= 3.5.9 |
References
- http://securityreason.com/securityalert/2457
- http://www.securityfocus.com/archive/1/463192/100/0/threaded
- http://www.securityfocus.com/bid/23033
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33151
- http://securityreason.com/securityalert/2457
- http://www.securityfocus.com/archive/1/463192/100/0/threaded
- http://www.securityfocus.com/bid/23033
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33151
FAQ
What is CVE-2007-1549?
CVE-2007-1549 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Unrestricted file upload vulnerability in gallery.php in phpx 3.5.15 allows remote attackers to upload and execute arbitrary PHP scripts via an addImage action, which places scripts into the gallery/s...
How severe is CVE-2007-1549?
CVE-2007-1549 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-1549?
Check the references section above for vendor advisories and patch information. Affected products include: Phpx Phpx.