mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
97 lines
3.5 KiB
JSON
97 lines
3.5 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "secalert@redhat.com",
|
|
"ID": "CVE-2010-5091",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1 allows remote authenticated users with CMS author privileges to execute arbitrary PHP code by changing the extension of an uploaded file."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "[oss-security] 20120501 Re: CVE-request: SilverStripe before 2.4.4",
|
|
"refsource": "MLIST",
|
|
"url": "http://www.openwall.com/lists/oss-security/2012/05/01/3"
|
|
},
|
|
{
|
|
"name": "http://open.silverstripe.org/ticket/5693",
|
|
"refsource": "MISC",
|
|
"url": "http://open.silverstripe.org/ticket/5693"
|
|
},
|
|
{
|
|
"name": "[oss-security] 20120430 CVE-request: SilverStripe before 2.4.4",
|
|
"refsource": "MLIST",
|
|
"url": "http://www.openwall.com/lists/oss-security/2012/04/30/1"
|
|
},
|
|
{
|
|
"name": "[oss-security] 20120430 Re: CVE-request: SilverStripe before 2.4.4",
|
|
"refsource": "MLIST",
|
|
"url": "http://www.openwall.com/lists/oss-security/2012/04/30/3"
|
|
},
|
|
{
|
|
"name": "http://dl.packetstormsecurity.net/1006-exploits/silverstripe-shell.txt",
|
|
"refsource": "MISC",
|
|
"url": "http://dl.packetstormsecurity.net/1006-exploits/silverstripe-shell.txt"
|
|
},
|
|
{
|
|
"name": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.4.1",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.4.1"
|
|
},
|
|
{
|
|
"name": "http://open.silverstripe.org/changeset/107273",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://open.silverstripe.org/changeset/107273"
|
|
},
|
|
{
|
|
"name": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.3.8",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.3.8"
|
|
}
|
|
]
|
|
}
|
|
} |