2005-05-14 04:00:00
mitre
PUBLISHED
users.ini.php in BoastMachine 3.0 does not properly restrict the types of files that can be uploaded, which allows remote attackers to execute arbitrary code.