phpgroupware: missing input sanitizing
| Package(s): | phpgroupware | CVE #(s): | CVE-2005-2781 | ||||
| Created: | May 22, 2006 | Updated: | May 24, 2006 | ||||
| Description: | It was discovered that the Avatar upload feature of FUD Forum, a component of the web based groupware system phpgroupware, does not sufficiently validate uploaded files, which might lead to the execution of injected web script code. | ||||||
| Alerts: |
| ||||||