RSS   Vulnerabilities for 'Webxell editor'   RSS

2008-07-15
 
CVE-2008-3178

CWE-20
 

 
Unrestricted file upload vulnerability in upload_pictures.php in WebXell Editor 0.1.3 allows remote attackers to execute arbitrary code by uploading a .php file with a jpeg content type, then accessing it via a direct request to the file in upload/.

 


Copyright 2024, cxsecurity.com

 

Back to Top