VYPR

File Upload Manager

by File Upload Manager

CVEs (2)

  • CVE-2005-1956Jun 12, 2005
    risk 0.00cvss epss 0.01

    File Upload Manager allows remote attackers to upload arbitrary files by modifying the test variable to contain a value of '~~~~~~' (six tildes), which bypasses the file extension checks.

  • CVE-2005-1957Jun 12, 2005
    risk 0.00cvss epss 0.02

    mtnpeak.net File Upload Manager does not properly check user authentication for certain actions, which allows remote attackers to provide a modified base64-encoded file parameter and (1) read arbitrary files via the "view" action or (2) delete arbitrary files via the del action.