FCKeditor For PHP-Nuke Arbitrary File Upload Vulnerability

FCKeditor For PHP-Nuke Arbitrary File Upload Vulnerability

It is reported that FCKeditor allows remote attackers to upload arbitrary files to a computer when it is used with PHP-Nuke. This issue may allow attackers to place malicious scripts on a server, which can lead to various attacks.

FCKeditor 2.0 RC2 running as a module for PHP-Nuke is reported prone to this issue. Other versions may be affected as well.