Description

Multiple directory traversal vulnerabilities in (1) document.php or (2) insertMyDoc.php in Claroline 1.5.3 through 1.6 Release Candidate 1, and possibly Dokeos, allow remote project administrators to upload arbitrary files.

Remediation

References

CVE-2005-1376

Related Vulnerabilities

WordPress Plugin WP Better Permalinks Cross-Site Request Forgery (3.0.4)

Oracle JRE Cryptographic Issues Vulnerability (CVE-2012-2739)

WordPress Plugin WordPress Geo-CF Geo Cross-Site Scripting (7.13.11)

MediaWiki Incorrect Authorization Vulnerability (CVE-2023-22945)

WordPress Plugin Coming Soon & Maintenance Mode Page Cross-Site Request Forgery (1.57)

Severity

High

Classification

CVE-2005-1376

Tags

Missing Update Known Vulnerabilities