TimThumb (timthumb.php) before 2.0 does not validate the entire source with the domain white list, which allows remote attackers to upload and execute arbitrary code via a URL containing a white-listed domain in the src parameter, then accessing it via a direct request to the file in the cache directory, as exploited in the wild in August 2011.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2013-10-26T16:00:00Z

Updated: 2024-09-16T22:09:33.905Z

Reserved: 2011-10-18T00:00:00Z

Link: CVE-2011-4106

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2013-10-26T16:55:03.113

Modified: 2024-11-21T01:31:51.503

Link: CVE-2011-4106

cve-icon Redhat

No data.