cpe:/a:etomite:etomite:0.6 cpe:/a:etomite:etomite:0.6.1 CVE-2006-7070 2007-03-02T16:18:00.000-05:00 2017-10-10T21:31:28.547-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2007-03-05T10:07:00.000-05:00 ALLOWS_USER_ACCESS SECTRACK 1016593 BID 19157 BUGTRAQ 20060725 Etomite CMS <= 0.6.1 'rfiles.php' remote command execution EXPLOIT-DB 2072 SECUNIA 21208 SREASON 2326 OSVDB 27543 XF etomite-rfiles-file-upload(27947) MISC http://retrogod.altervista.org/etomite_061_cmd.html CONFIRM http://www.etomite.org/forums/index.php?showtopic=5757&st=0&p=35605&#entry35605 Unrestricted file upload vulnerability in manager/media/ibrowser/scripts/rfiles.php in Etomite CMS 0.6.1 and earlier allows remote attackers to upload and execute arbitrary files via an nfile[] parameter with a filename that contains a .php extension followed by a valid image extension such as .gif or .jpg, then calling the rename function.