The eyeHome function in apps/eyeHome.eyeapp/aplic.php in EyeOS before 0.9.3-3 allows remote attackers to upload and execute arbitrary code via dangerous file extensions that are not all lowercase, which bypasses a cleansing operation.
References
Configurations
History
No history.
Information
Published : 2006-12-14 18:28
Updated : 2024-02-28 11:01
NVD link : CVE-2006-6556
Mitre link : CVE-2006-6556
CVE.ORG link : CVE-2006-6556
JSON object : View
Products Affected
eyeos
- eyeos
CWE