VYPR
Unrated severityNVD Advisory· Published Feb 27, 2007· Updated Jun 16, 2026

CVE-2007-1129

CVE-2007-1129

Description

Multiple unrestricted file upload vulnerabilities in MTCMS 3.2 allow remote attackers to upload and execute files via (1) an avatar upload in an add_down action, or (2) an add_link action.

Affected products

2
  • Mtcms/Mtcms2 versions
    cpe:2.3:a:mtcms:mtcms:3.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:mtcms:mtcms:3.2:*:*:*:*:*:*:*
    • (no CPE)range: =3.2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.