RSS   Vulnerabilities for 'Com jce'   RSS

2012-08-30
 
CVE-2011-5134

 

 
Unrestricted file upload vulnerability in editor/extensions/browser/file.php in the JCE component before 2.0.18 for Joomla! allows remote authenticated users with the author privileges to execute arbitrary PHP code by uploading a file with a double extension, as demonstrated by .php.gif. NOTE: some of these details are obtained from third party information.

 

 >>> Vendor: Widgetfactorylimited 2 Products
Com jce
JCE


Copyright 2024, cxsecurity.com

 

Back to Top