CVE-2011-2933

Summary

An Arbitrary File Upload vulnerability exists in admin/media/upload.php in WebsiteBaker 2.8.1 and earlier due to a failure to restrict uploaded files with .htaccess, .php4, .php5, and .phtl extensions.

Affected Software

VendorProductVersion RangeStatus
WebsiteBakerWebsiteBakerthrough 2.8.1affected

Weaknesses

  • Arbitrary File Upload

ADP Enrichment

CVE Program Container

Additional References

References