Unrated severityNVD Advisory· Published Jan 11, 2008· Updated Apr 23, 2026

CVE-2008-0233

Description

Unrestricted file upload vulnerability in Zero CMS 1.0 Alpha and earlier allows remote attackers to bypass intended access restrictions and upload and execute arbitrary files by uploading an avatar file with an accepted Content-Type such as image/jpeg.

Affected products

Zero Cms/Zero CMS
cpe:2.3:a:zero_cms:zero_cms:1.0_alpha:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.org/0801-exploits/zerocms-sql.txtnvd
www.exploit-db.com/exploits/4864nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000