info
discussion
exploit
solution
references
XOOPS Uploader Class Arbitrary File Upload Vulnerability
Solution:
The vendor released a patch to address this issue. Please see the references for more information.
Xoops Xoops 2.0.16 core
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 1.3.10
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 1.3.5
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 1.3.6
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 1.3.7
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 1.3.8
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 1.3.9
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.10
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.11
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.12
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.12 a
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.13 .1
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.13 .2
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.14
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.15
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.2
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.3
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.5
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.5 .1
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.5 .2
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.9 .3
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.0.9 .2
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.2.1
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.2.3 RC1
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Xoops Xoops 2.2.3
Xoops xoops-uploader-patch-071001.tar.gz
http://downloads.sourceforge.net/xoops/xoops-uploader-patch-071001.tar .gz?modtime=1191193030&big_mirror=0
Privacy Statement
Copyright 2010, SecurityFocus
