CVE-2005-2781 (retired)

Priority
Description
The Avatar upload feature in FUD Forum before 2.7.0 does not properly
verify uploaded files, which allows remote attackers to execute arbitrary
PHP code via a file with a .php extension that contains image data followed
by PHP code.
Notes
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-10-09 06:59:01 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)