Security Advisory

CVE-2011-4334

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-10-23 18:00:00

Last updated 2024-08-07 00:01:51

Assigner redhat

State PUBLISHED

Description

edit.php in LabWiki 1.1 and earlier does not properly verify uploaded user files, which allows remote authenticated users to upload arbitrary PHP files via a PHP file with a .gif extension in the userfile parameter.

← Browse all CVEs View on cve.org ↗