Description
Unrestricted file upload vulnerability in the fileUnzip->unzip method in Dotclear before 2.10.3 allows remote authenticated users with permissions to manage media items to execute arbitrary code by uploading a ZIP file containing a file with a crafted extension, as demonstrated by .php.txt or .php%20.
Remediation
References
Related Vulnerabilities
WordPress Plugin Alert Before Your Post Cross-Site Scripting (0.1.1)
WordPress Plugin JSON Content Importer Cross-Site Scripting (1.3.15)
PHP Out-of-bounds Read Vulnerability (CVE-2018-20783)
PHP Other Vulnerability (CVE-2007-1378)
WordPress Plugin Integration for Contact Form 7 and Mailchimp Cross-Site Scripting (1.0.9)