Arbitrary File Upload and Execution in SitePanel 2.6.1 and Earlier

Arbitrary File Upload and Execution in SitePanel 2.6.1 and Earlier

CVE-2005-1446 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SitePanel 2.6.1 and earlier (SitePanel2) allows remote attackers to upload and execute arbitrary files such as PHP scripts via an attachment to a trouble ticket.

Learn more about our Web Application Penetration Testing UK.