|
FCKeditor Arbitrary File Upload Vulnerability
FCKeditor is prone to an arbitrary file-upload vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation; other attacks are also possible. This issue affects version 2.2 when file uploads are enabled in 'config.php'; earlier versions may also be vulnerable. |
|
|
Privacy Statement |
