Ajax File And Image Manager 'data.php' PHP Code Injection Vulnerability Network Vulnerability

Summary

Ajax File and Image Manager is prone to a remote PHP code-injection vulnerability. An attacker can exploit this issue to inject and execute arbitrary PHP code in the context of the affected application. This may facilitate a compromise of the application and the underlying system other attacks are also possible. Ajax File and Image Manager 1.0 is vulnerable other versions may also be affected.

References

http://www.phpletter.com/
http://www.securityfocus.com/bid/50523

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-4825
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Baby Gekko CMS Multiple Vulnerabilities
Adobe ColdFusion Directory Traversal Vulnerability
Ad Manager Pro Multiple SQL Injection And XSS Vulnerabilities
AstroSPACES profile.php SQL Injection Vulnerability
AV Arcade 'ava_code' Cookie Parameter SQL Injection Vulnerability

Ajax File and Image Manager 'data.php' PHP Code Injection Vulnerability

Take action and discover your vulnerabilities