VYPR
Unrated severityNVD Advisory· Published Dec 31, 2005· Updated Jun 16, 2026

CVE-2005-4814

CVE-2005-4814

Description

Unrestricted file upload vulnerability in Segue CMS before 1.3.6, when the Apache HTTP Server handles .phtml files with the PHP interpreter, allows remote attackers to upload and execute arbitrary PHP code by placing .phtml files in the userfiles/ directory.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Segue CMS/CMS2 versions
    cpe:2.3:a:middlebury_college:segue_cms:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:middlebury_college:segue_cms:*:*:*:*:*:*:*:*range: <=1.3.5
    • (no CPE)range: < 1.3.6

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.