Unrated severityNVD Advisory· Published Dec 31, 2006· Updated Jun 16, 2026
CVE-2006-6879
CVE-2006-6879
Description
Unrestricted file upload vulnerability in admin/uploads.php in PHP-Update 2.7 and earlier allows remote authenticated users to upload arbitrary PHP scripts to the gfx/ and files/ directories via the userfile parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:php-update:php-update:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:php-update:php-update:*:*:*:*:*:*:*:*range: <=2.7
- (no CPE)range: <=2.7
Patches
Vulnerability mechanics
References
5- www.securityfocus.com/bid/21789nvdExploitVendor Advisory
- secunia.com/advisories/23486nvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/31125nvd
- www.exploit-db.com/exploits/3017nvd
- www.exploit-db.com/exploits/3020nvd
News mentions
0No linked articles in our index yet.