CVE Vulnerabilities

CVE-2005-1031

Published: May 02, 2005 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

RUNCMS 1.1A, and possibly other products based on e-Xoops (exoops), when Allow custom avatar upload is enabled, does not properly verify uploaded files, which allows remote attackers to upload arbitrary files.

Affected Software

Name Vendor Start Version End Version
Runcms Runcms 1.1a 1.1a
E-xoops E-xoops 1.05r3 1.05r3
Runcms Runcms 1.1 1.1

References