CVE-2007-5156

Description

Incomplete blacklist vulnerability in editor/filemanager/upload/php/upload.php in FCKeditor, as used in SiteX CMS 0.7.3.beta, La-Nai CMS, Syntax CMS, Cardinal Cms, and probably other products, allows remote attackers to upload and execute arbitrary PHP code via a file whose name contains ".php." and has an unknown extension, which is recognized as a .php file by the Apache HTTP server, a different vulnerability than CVE-2006-0658 and CVE-2006-2529.

How to fix CVE-2007-5156

To remediate CVE-2007-5156, upgrade the affected package to a fixed version below.

• Debian/moin—upgrade to 1.5.8-4.1 or later

Is CVE-2007-5156 being exploited?

Moderate — EPSS is 49.7%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 1.5.8-4.1

References (19)

• ADVISORYdev.fckeditor.net/changeset/973
• ADVISORYdev.fckeditor.net/ticket/1325
• ADVISORYsecunia.com/advisories/27123
• ADVISORYsecunia.com/advisories/27174
• ADVISORYwww.vupen.com/english/advisories/2007/3464