RSS   Vulnerabilities for 'Medias phpizabi'   RSS

2008-02-18
 
CVE-2008-0805

CWE-264
 

 
Unrestricted file upload vulnerability in image.php in PHPizabi 0.848b C1 HFP1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension from the event page, then accessing it via a direct request to the file in system/cache/pictures.

 


Copyright 2024, cxsecurity.com

 

Back to Top