RSS   Vulnerabilities for 'Flashblog'   RSS

2008-06-06
 
CVE-2008-2574

CWE-20
 

 
Unrestricted file upload vulnerability in admin/Editor/imgupload.php in FlashBlog 0.31 beta allows remote attackers to execute arbitrary code by uploading a .php file, then accessing it via a direct request to the file in tus_imagenes/.

 


Copyright 2024, cxsecurity.com

 

Back to Top