Security Advisory

CVE-2009-4090

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-11-27 20:45:00

Last updated 2024-08-07 06:54:09

Assigner mitre

State PUBLISHED

Description

Unrestricted file upload vulnerability in ajax/addComment.php in telepark.wiki 2.4.23 and earlier script allows remote attackers to execute arbitrary code by uploading a file with a name containing a NULL byte.

← Browse all CVEs View on cve.org ↗