CVE-2006-0658

FCKeditor <2.2 - RCE

Title source: llm

Description

Incomplete blacklist vulnerability in connector.php in FCKeditor 2.0 and 2.2, as used in products such as RunCMS, allows remote attackers to upload and execute arbitrary script files by giving the files specific extensions that are not listed in the Config[DeniedExtensions][File], such as .php.txt.

Exploits (2)

exploitdb WORKING POC VERIFIED

by BlackHawk · phpwebappsphp

https://www.exploit-db.com/exploits/3702

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by rgod · phpwebappsphp

https://www.exploit-db.com/exploits/1484

View Code ZIP pw:eip

References (5)

[Exploit] http://retrogod.altervista.org/fckeditor_22_xpl.html

[Vendor Advisory] http://secunia.com/advisories/18767

[Exploit] http://www.securityfocus.com/archive/1/424708

[Vendor Advisory] http://www.vupen.com/english/advisories/2006/0502

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3702

Scores

EPSS 0.0568

EPSS Percentile 90.4%

Details

Status published

Products (2)

fckeditor/fckeditor 2.0

fckeditor/fckeditor 2.2

Published Feb 13, 2006

Tracked Since Feb 18, 2026