Vulnerabilities
Vulnerable Software
Drupal:  >> Imce Module  Security Vulnerabilities
Unrestricted file upload vulnerability in IMCE before 1.6, a Drupal module, allows remote authenticated users to upload arbitrary PHP code via a filename with a double extension such as .php.gif.
CVSS Score
6.5
EPSS Score
0.005
Published
2007-03-05
Directory traversal vulnerability in the delete function in IMCE before 1.6, a Drupal module, allows remote authenticated users to delete arbitrary files via ".." sequences.
CVSS Score
5.5
EPSS Score
0.012
Published
2007-03-05


Contact Us

Shodan ® - All rights reserved