Description

Multiple incomplete blacklist vulnerabilities in inc/core/class.dc.core.php in Dotclear before 2.8.2 allow remote authenticated users with "manage their own media items" and "manage their own entries and comments" permissions to execute arbitrary PHP code by uploading a file with a (1) .pht, (2) .phps, or (3) .phtml extension.

Remediation

References

CVE-2015-8832

Related Vulnerabilities

WordPress Plugin Rating-Widget:Star Review System Security Bypass (2.8.9)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-6455)

WordPress Plugin Sticky Menu on Scroll, Sticky Header, Sticky Welcome Bar for Any Theme-myStickymenu Unspecified Vulnerability (2.1.4)

phpMyFAQ Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2024-28105)

Magento Improper Authorization Vulnerability (CVE-2020-24404)

Severity

High

Classification

CVE-2015-8832 CWE-284 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities