Unrated severityNVD Advisory· Published Jan 28, 2011· Updated Jun 16, 2026
CVE-2011-0678
CVE-2011-0678
Description
Unrestricted file upload vulnerability in the EasyEdit module in Lomtec ActiveWeb Professional 3.0 allows remote attackers to execute arbitrary code by uploading an executable file via the UploadDirectory and Accepted Extensions fields in the getImagefile component of EasyEdit.cfm.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =3.0
Patches
Vulnerability mechanics
References
7- www.exploitdevelopment.com/Vulnerabilities/2010-WEB-002.htmlnvdExploit
- www.securityfocus.com/bid/45985nvdExploit
- www.kb.cert.org/vuls/id/528212nvdUS Government Resource
- osvdb.org/70669nvd
- secunia.com/advisories/43031nvd
- www.vupen.com/english/advisories/2011/0217nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/65013nvd
News mentions
0No linked articles in our index yet.