[原文]editor/filemanager/upload/php/upload.php in FCKeditor before 2.3 Beta, when the upload feature is enabled, does not verify the Type parameter, which allows remote attackers to upload arbitrary file types. NOTE: It is not clear whether this is related to CVE-2006-0658.
FCKeditor upload.php Type Variable Arbitrary File Upload
Remote / Network Access
Loss of Integrity
FCKeditor contains a flaw that allows a remote upload files to arbitrary locations on the server. This flaw exists because the application does not validate the 'Type' variable upon submission to the upload.php script. This could allow a user to create or overwrite any files on the server with the same level of access as the web server. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.
Upgrade to version 2.3 Beta or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.