VYPR
Unrated severityNVD Advisory· Published May 22, 2006· Updated Jun 16, 2026

CVE-2006-2530

CVE-2006-2530

Description

avatar_upload.asp in Avatar MOD 1.3 for Snitz Forums 3.4, and possibly other versions, allows remote attackers to bypass file type checks and upload arbitrary files via a null byte in the file name, as discovered by the Codescan product.

Affected products

2
  • cpe:2.3:a:snitz_communications:avatar_mod:1.3:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:snitz_communications:avatar_mod:1.3:*:*:*:*:*:*:*
    • (no CPE)range: = 1.3

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.