CVE-2004-1408

CVE-2004-1408

EPSS 1.5%

The addImage method for admin.class.php in Image Gallery Web Application 0.9.10 does not properly check filenames, which allows remote attackers to upload and execute arbitrary files.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://marc.info/?l=bugtraq&m=110323479715051&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/18531 http://www.securityfocus.com/bid/11990