CVE-2005-1881

YaPiG 0.92b, 0.93u, 0.94u - Unauthenticated Arbitrary File Upload via upload.php

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-1881. PoCs published by anonymous.

AI-analyzed exploit summary The exploit describes remote and local file include vulnerabilities in YaPiG due to improper input sanitization. It provides example URLs to exploit the vulnerabilities in versions 0.92b, 0.93u, and 0.94u.

Description

upload.php in YaPiG 0.92b, 0.93u and 0.94u does not properly restrict the file extension for uploaded image files, which allows remote attackers to upload arbitrary files and execute arbitrary PHP code.

Exploits (1)

exploitdb WRITEUP VERIFIED
by anonymous · textwebappsphp
https://www.exploit-db.com/exploits/25792

The exploit describes remote and local file include vulnerabilities in YaPiG due to improper input sanitization. It provides example URLs to exploit the vulnerabilities in versions 0.92b, 0.93u, and 0.94u.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: YaPiG versions 0.92b, 0.93u, 0.94u
No auth needed
Prerequisites: Access to the target application · Ability to craft malicious URLs
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Broken Link, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/15600/
Broken Link, Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/17115
Broken Link, Vendor Advisory x_refsource_misc
http://secwatch.org/advisories/secwatch/20050530_yapig.txt
Broken Link, Exploit, Third Party Advisory, VDB Entry, Vendor Advisory vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1014103

Scores

EPSS 0.0343
EPSS Percentile 87.4%

Details

CWE
CWE-434
Status published
Products (3)
yapig/yapig 0.92b
yapig/yapig 0.93u
yapig/yapig 0.94u
Published Jun 06, 2005
Tracked Since Feb 18, 2026