CVE-2009-4818

Publication date

2010-04-27 15:00:00

Family

mitre

State

PUBLISHED

Description

Unrestricted file upload vulnerability in upload.php in PHPSimplicity Simplicity oF Upload 1.3.2 allows remote attackers to execute arbitrary PHP code by uploading a file with a double extension, as demonstrated by .php.gif.