Vulnerabilities for Kafooeyblog (...) - CXSECURITY.COM

Vulnerabilities for 'Kafooeyblog'

2008-12-26

CVE-2008-5732

CWE-20

Unrestricted file upload vulnerability in lib/image_upload.php in KafooeyBlog 1.55b allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file.

Copyright 2024, cxsecurity.com