CVE-2009-3890
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2009-3890
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2009-3890.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2009-3890
- Published
- 2009-11-17T18:30:00Z
- Modified
- 2025-02-21T05:00:06Z
- Summary
- [none]
- Details
-
Unrestricted file upload vulnerability in the wpcheckfiletype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the mod_mime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an attachment with a multiple-extension filename, and then accessing this attachment via a direct request to a wp-content/uploads/ pathname, as demonstrated by a .php.jpg filename.
- References
-
- http://core.trac.wordpress.org/ticket/11122
- http://secunia.com/advisories/37332
- http://wordpress.org/development/2009/11/wordpress-2-8-6-security-release/
- http://www.openwall.com/lists/oss-security/2009/11/15/2
- http://www.openwall.com/lists/oss-security/2009/11/15/3
- http://www.openwall.com/lists/oss-security/2009/11/16/1
- http://archives.neohapsis.com/archives/fulldisclosure/2009-11/0142.html
- http://archives.neohapsis.com/archives/fulldisclosure/2009-11/0149.html
- http://archives.neohapsis.com/archives/fulldisclosure/2009-11/0153.html
- http://www.osvdb.org/59958
- https://security-tracker.debian.org/tracker/CVE-2009-3890
Affected packages
Debian:11 / wordpress
Package
- Name
- wordpress
- Purl
- pkg:deb/debian/wordpress?arch=source
Debian:12 / wordpress
Package
- Name
- wordpress
- Purl
- pkg:deb/debian/wordpress?arch=source
Debian:13 / wordpress
Package
- Name
- wordpress
- Purl
- pkg:deb/debian/wordpress?arch=source