cbcvebase.
CVE-2005-0272
published 2005-05-02

CVE-2005-0272: ReviewPost PHP Pro before 2.84 allows remote attackers to upload and execute arbitrary PHP files by posting a review file with multiple extensions, which…

PriorityP342high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.66%
83.8th percentile
ReviewPost PHP Pro before 2.84 allows remote attackers to upload and execute arbitrary PHP files by posting a review file with multiple extensions, which bypasses the intended restrictions.

Affected

3 ranges
VendorProductVersion rangeFixed in
photopostreviewpost_php_pro<= 2.5.1
photopostreviewpost_php_pro
photopostreviewpost_php_pro
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.