TimThumb (timthumb.php) before 2.0 does not validate the entire source with the domain white list, which allows remote attackers to upload and execute arbitrary code via a URL containing a white-listed domain in the src parameter, then accessing it via a direct request to the file in the cache directory, as exploited in the wild in August 2011.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2022-10-03T16:15:13
Updated: 2022-10-03T16:15:13
Reserved: 2022-10-03T00:00:00
Link: CVE-2011-4106
JSON object: View
NVD Information
Status : Analyzed
Published: 2013-10-26T16:55:03.113
Modified: 2013-10-28T15:15:37.903
Link: CVE-2011-4106
JSON object: View
Redhat Information
No data.
CWE