VYPR
Unrated severityNVD Advisory· Published Feb 27, 2010· Updated Jun 16, 2026

CVE-2010-0757

CVE-2010-0757

Description

Unrestricted file upload vulnerability in index.php/Attach in WikyBlog 1.7.3rc2 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension using the uploadform action, then accessing it via a direct request to the file in userfiles/[username]/uploaded/.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Wikyblog/Wikyblog2 versions
    cpe:2.3:a:wikyblog:wikyblog:1.7.3:rc2:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:wikyblog:wikyblog:1.7.3:rc2:*:*:*:*:*:*
    • (no CPE)range: =1.7.3rc2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.