Vulnerability Description
Unrestricted file upload vulnerability in Jetbox CMS allows remote authenticated users with author privileges to upload arbitrary scripts via unspecified vectors, which can be accessed in webfiles/. NOTE: this issue might be a duplicate of CVE-2004-1448.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Jetbox | Jetbox Cms | 2.1 |
References
- http://osvdb.org/37450
- http://securityreason.com/securityalert/2711
- http://www.securityfocus.com/archive/1/468681/100/0/threaded
- http://www.securityfocus.com/bid/23996
- http://osvdb.org/37450
- http://securityreason.com/securityalert/2711
- http://www.securityfocus.com/archive/1/468681/100/0/threaded
- http://www.securityfocus.com/bid/23996
FAQ
What is CVE-2007-2733?
CVE-2007-2733 is a vulnerability with a CVSS score of 6.0 (MEDIUM). Unrestricted file upload vulnerability in Jetbox CMS allows remote authenticated users with author privileges to upload arbitrary scripts via unspecified vectors, which can be accessed in webfiles/. ...
How severe is CVE-2007-2733?
CVE-2007-2733 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-2733?
Check the references section above for vendor advisories and patch information. Affected products include: Jetbox Jetbox Cms.