2005-05-03 04:00:00
mitre
PUBLISHED
The media manager in Serendipity before 0.8 allows remote attackers to upload and execute arbitrary (1) .php or (2) .shtml files.