VYPR
Unrated severityNVD Advisory· Published Mar 5, 2007· Updated Jun 16, 2026

CVE-2006-7109

CVE-2006-7109

Description

Unrestricted file upload vulnerability in IMCE before 1.6, a Drupal module, allows remote authenticated users to upload arbitrary PHP code via a filename with a double extension such as .php.gif.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.