CVE-2011-2933

Severity CVSS v4.0:
Pending analysis
Type:
CWE-434 Unrestricted Upload of File with Dangerous Type
Publication date:
14/01/2020
Last modified:
21/11/2024

Description

An Arbitrary File Upload vulnerability exists in admin/media/upload.php in WebsiteBaker 2.8.1 and earlier due to a failure to restrict uploaded files with .htaccess, .php4, .php5, and .phtl extensions.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:websitebaker:websitebaker:*:*:*:*:*:*:*:* 2.8.1 (including)