RSS   Vulnerabilities for 'Japanese php gallery hosting'   RSS

2007-10-30
 
CVE-2007-5733

CWE-94
 

 
Unrestricted file upload vulnerability in upload/upload.php in Japanese PHP Gallery Hosting, when Open directory mode is enabled, allows remote attackers to upload and execute arbitrary PHP code via a ServerPath parameter specifying a filename with a double extension. NOTE: some of these details are obtained from third party information.

 


Copyright 2024, cxsecurity.com

 

Back to Top