← back
CVE-2007-4057

CVE-2007-4057

EPSS 2.1%
Unrestricted file upload vulnerability in pfs.php in Neocrome Seditio 121 and earlier allows remote authenticated users to upload arbitrary PHP code via a filename ending with (1) .php.gif, (2) .php.jpg, or (3) .php.png.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/4235unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/39023https://exchange.xforce.ibmcloud.com/vulnerabilities/35681https://www.exploit-db.com/exploits/4235http://www.securityfocus.com/bid/25130