RSS   Vulnerabilities for 'Content now'   RSS

2008-07-15
 
CVE-2008-3181

CWE-20
 

 
Unrestricted file upload vulnerability in upload.php in ContentNow CMS 1.4.1 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in upload/.

 


Copyright 2024, cxsecurity.com

 

Back to Top