Security Advisory

CVE-2007-0082

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-01-05 11:00:00

Last updated 2024-08-07 12:03:37

Assigner mitre

State PUBLISHED

Description

users_adm/start1.php in IMGallery 2.5 and earlier does not properly handle files with multiple extensions, which allows remote authenticated users to upload and execute arbitrary PHP scripts.

← Browse all CVEs View on cve.org ↗