CVE-2005-2781

EPSS 1.27% · P80 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2005-2781

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Avatar upload feature in FUD Forum before 2.7.0 does not properly verify uploaded files, which allows remote attackers to execute arbitrary PHP code via a file with a .php extension that contains image data followed by PHP code.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

FUDforum Avatar Upload 任意脚本上传漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

FUD Forum是一个基于PHP+MySQL/PostgreSQL构建的开源论坛系统。 FUD Forum 2.7.0以前的版本中的头像上传功能不能正确地验证上传得文件。这使得远程攻击者可借助后缀名为.php的文件执行任意的php代码，其中所述的.php文件包含PHP代码图像数据。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2005-2781

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2005-2781

请登录查看更多情报信息。

http://fudforum.org/forum/index.php?t=msg&th=5470&start=0&x_refsource_CONFIRM
http://www.securityfocus.com/bid/14678vdb-entryx_refsource_BID
http://secunia.com/advisories/16627/third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/20203third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2006/dsa-1063vendor-advisoryx_refsource_DEBIAN
https://exchange.xforce.ibmcloud.com/vulnerabilities/22076vdb-entryx_refsource_XF
http://marc.info/?l=bugtraq&m=112534235403406&w=2mailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/500406/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2005-2781

Same Patch Batch · n/a · 2005-09-02 · 31 CVEs total

CVE-2005-2778		MyBulletinBoard Member.PHP SQL注入漏洞
CVE-2005-2793		phpLDAPadmin 命令注入漏洞
CVE-2005-2792		phpLDAPadmin 路径遍历漏洞
CVE-2005-2791		BFCommand & Control Server Manager拒绝服务漏洞
CVE-2005-2790		BFCommand & Control Server Manager绕过管理限制漏洞
CVE-2005-2789		BFCommand & Control Server Manager绕过认证漏洞
CVE-2005-2788		Land Down Under 多个SQL注入漏洞
CVE-2005-2787		Simple PHP Blog comment_delete_cgi.php删除任意文件漏洞
CVE-2005-2786		Cosmoshop bestmail_edit.cgi目录遍历漏洞
CVE-2005-2785		Cosmoshop信息泄露漏洞
CVE-2005-2784		Cosmoshop login SQL注入漏洞
CVE-2005-2783		PHP-Fusion BBCode URL 跨站脚本漏洞
CVE-2005-2782		AutoLinks Pro A_initialize.PHP 远程文件包含漏洞
CVE-2005-2780		Land Down Under跨站脚本漏洞
CVE-2005-2779		iTan中间人攻击漏洞
CVE-2005-1857		Simpleproxy reply 格式化字符串漏洞
CVE-2005-2777		Looking Glass 远程执行任意命令漏洞
CVE-2005-2776		Looking Glass 跨站脚本漏洞
CVE-2005-2775		PHPWebNotes Api.PHP 远程文件包含漏洞
CVE-2005-2774		Quake 2 Lithium II 格式化字符串漏洞

Showing top 20 of 31 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2005-2781

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2005-2781

I. Basic Information for CVE-2005-2781

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2005-2781

III. Intelligence Information for CVE-2005-2781

Same Patch Batch · n/a · 2005-09-02 · 31 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2005-2781

Leave a comment