CVE-2007-5156

FCKeditor - Remote Code Execution via File Upload

Title source: llm

Description

Incomplete blacklist vulnerability in editor/filemanager/upload/php/upload.php in FCKeditor, as used in SiteX CMS 0.7.3.beta, La-Nai CMS, Syntax CMS, Cardinal Cms, and probably other products, allows remote attackers to upload and execute arbitrary PHP code via a file whose name contains ".php." and has an unknown extension, which is recognized as a .php file by the Apache HTTP server, a different vulnerability than CVE-2006-0658 and CVE-2006-2529.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Stack · phpwebappsphp
https://www.exploit-db.com/exploits/5688
exploitdb WORKING POC VERIFIED
by EgiX · textwebappsphp
https://www.exploit-db.com/exploits/5618

References (19)

Scores

EPSS 0.4881
EPSS Percentile 97.8%

Details

Status published
Products (4)
cardinal_cms_project/cardinal_cms 1.2
redlinesoft/lanai_cms < 1.2.16
sitex_cms_project/sitex_cms 0.7.3 beta
syntax_cms_project/syntax_cms < 1.3
Published Oct 01, 2007
Tracked Since Feb 18, 2026