CVE-2005-4422
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2005-4422
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Unrestricted file upload vulnerability in toendaCMS before 0.6.2 Stable allows remote authenticated administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in data/images/albums.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
toendaCMS远程文件上载漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
toendaCMS before 0.6.2 Stable存在无限制文件上载漏洞,远程认证管理员可通过上载带有可执行扩展名的文件并通过直接请求data/images/albums内的文件访问它来执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2005-4422
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2005-4422
Please Login to view more intelligence information
Same Patch Batch · n/a · 2005-12-20 · 76 CVEs total
| CVE-2005-4378 | Baseline CMS SQL注入漏洞 | |
| CVE-2005-4362 | Komodo CMS SQL注入漏洞 | |
| CVE-2005-4386 | Colony搜索模块多个跨站脚本攻击漏洞 | |
| CVE-2005-4385 | Cofax Search.HTM跨站脚本攻击漏洞 | |
| CVE-2005-4384 | CitySoft Community Enterprise 远程攻击漏洞 | |
| CVE-2005-4383 | CitySoft Community Enterprise index.cfm 跨站脚本攻击漏洞 | |
| CVE-2005-4382 | CitySoft Community Enterprise SQL注入漏洞 | |
| CVE-2005-4381 | Caravel CMS多个跨站脚本漏洞 | |
| CVE-2005-4380 | Bitweaver SQL注入漏洞 | |
| CVE-2005-4379 | Bitweaver 多个跨站脚本攻击漏洞 | |
| CVE-2005-4387 | Contenite ID参数跨站脚本漏洞 | |
| CVE-2005-4377 | Baseline CMS Page.asp 跨站脚本攻击漏洞 | |
| CVE-2005-4376 | Amaxus 目录遍历漏洞 | |
| CVE-2005-4375 | Box UK Amaxus CMS跨站脚本漏洞 | |
| CVE-2005-4374 | Allinta CMS多个跨站脚本漏洞 | |
| CVE-2005-4373 | Adaptive Website Framework 错误信息泄露路径漏洞 | |
| CVE-2005-4372 | Adaptive Website Framework跨站脚本攻击漏洞 | |
| CVE-2005-4371 | Acidcat CMS多个输入验证漏洞 | |
| CVE-2005-4370 | Acidcat CMS SQL注入漏洞 | |
| CVE-2005-4369 | Acuity CMS ASP Search Module跨站脚本攻击漏洞 |
Showing top 20 of 76 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem
V. Comments for CVE-2005-4422
No comments yet