CVE-2006-5411

Justin White Freewps < 2.11 - Unrestricted File Upload

Title source: rule

Description

Unrestricted file upload vulnerability in upload.php for Free Web Publishing System (FreeWPS), possibly 2.11 and earlier, allows remote attackers to upload and execute arbitrary PHP programs.

Exploits (1)

exploitdb WORKING POC VERIFIED

by HACKERS PAL · phpwebappsphp

https://www.exploit-db.com/exploits/28795

View Code ZIP pw:eip

References (5)

[Vendor Advisory] http://secunia.com/advisories/19343

[Exploit] http://www.securityfocus.com/bid/20494

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/29379

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/447870/100/200/threaded

[Third Party Advisory] http://securityreason.com/securityalert/1746

Scores

EPSS 0.0461

EPSS Percentile 89.3%

Details

Status published

Products (1)

justin_white/freewps < 2.11

Published Oct 20, 2006

Tracked Since Feb 18, 2026