CVE-2006-5845 - Polyatomic Opinion

Description

Unrestricted file upload vulnerability in index.php in Speedywiki 2.0 allows remote authenticated users to upload and execute arbitrary PHP code by setting the upload parameter to 1.

Reference

http://s-a-p.ca/index.php?page=OurAdvisories&id=9 http://secunia.com/advisories/22788 http://securitytracker.com/id?1017201 http://www.vupen.com/english/advisories/2006/4421 http://marc.info/?l=bugtraq&m=116302805802656&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/30131