CVE-2005-2437 Information

Description

Website Baker Project does not properly verify the file extensions of uploaded files which allows remote attackers to upload and execute arbitrary PHP code.

Reference

http://marc.info/?l=bugtraq&m=112260471228762&w=2 http://secunia.com/advisories/16263 http://www.osvdb.org/18345 http://www.securityfocus.com/bid/14406 https://exchange.xforce.ibmcloud.com/vulnerabilities/21634