CVE-2005-2614

EPSS 2.16% · P84 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2005-2614

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Discuz! 4.0 rc4 does not properly restrict types of files that are uploaded to the server, which allows remote attackers to execute arbitrary commands via a filename containing ".php.rar" or other multiple extensions that include .php.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Discuz! 任意文件上传漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Discuz! 4.0 rc4不能正确地限制上传至服务器的文件的类型。这使得远程攻击者可以借助于包含".php.rar"的文件名或其它多个包括".php"的扩展名执行任意命令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2005-2614

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2005-2614

请登录查看更多情报信息。

http://secunia.com/advisories/16433third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/14564vdb-entryx_refsource_BID
http://securitytracker.com/id?1014673vdb-entryx_refsource_SECTRACK
http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0440.htmlmailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2005-2614

Same Patch Batch · n/a · 2005-08-17 · 49 CVEs total

CVE-2005-2604		My Image Gallery 'index.php' 信息泄露漏洞
CVE-2005-2607		PHPSimplicity Simplicity 'download.php' PHP文件包含漏洞
CVE-2005-2609		VegaDNS 'index.php' 信息泄露漏洞
CVE-2005-2613		CPaint 代码执行漏洞
CVE-2005-2615		EQDKP 'Session.PHP' 认证绕过漏洞
CVE-2005-2616		EZUpload 多个远程文件包含漏洞
CVE-2005-2617		Linux内核 'syscall32.c'内存泄露漏洞
CVE-2005-2620		Novell GroupWise 明文口令泄露漏洞
CVE-2005-2612		WordPress cache_lastpostdate 远程任意命令执行漏洞
CVE-2005-2605		Lasso专业服务器认证绕过漏洞
CVE-2005-2606		PHlyMail 未明认证绕过漏洞
CVE-2005-2603		My Image Gallery 'index.php' 跨站脚本漏洞
CVE-2005-2602		Mozilla Firefox和Thunderbird 长URI混淆漏洞
CVE-2005-2601		MidiCart ASP 'Item_Show.ASP' SQL注入漏洞
CVE-2005-2600		FUDForum 树状视图验证漏洞
CVE-2005-2599		Hummingbird FTP 弱密码加密漏洞
CVE-2005-2598		Dokeos 多个目录遍历漏洞
CVE-2005-2597		AOL客户端本地权限提升漏洞
CVE-2005-2596		Gallery 'User.php' 访问验证漏洞
CVE-2005-2595		Dada Mail 跨站脚本漏洞

Showing top 20 of 49 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2005-2614

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2005-2614

I. Basic Information for CVE-2005-2614

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2005-2614

III. Intelligence Information for CVE-2005-2614

Same Patch Batch · n/a · 2005-08-17 · 49 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2005-2614

Leave a comment