Security Advisory

CVE-2008-2833

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2008-06-24 19:00:00

Last updated 2024-08-07 09:14:14

Assigner mitre

State PUBLISHED

Description

admin/upload.php in le.cms 1.4 and earlier allows remote attackers to bypass administrative authentication, and upload and execute arbitrary files in images/, via a nonzero value for the submit0 parameter in conjunction with filenames in the filename and upload parameters.

← Browse all CVEs View on cve.org ↗