CVE-2008-3117 (phpmotion) |
|
| BugsAlert Home > CVE-2008-3117 (phpmotion) | |
|
Unrestricted file upload vulnerability in update_profile.php in PHPmotion 2.0 and earlier allows remote authenticated users to execute arbitrary code by uploading a .php file with a content type of (1) image/gif, (2) image/jpeg, or (3) image/pjpeg, then accessing it via a direct request to the file under pictures/. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3117 Learn more about CVE-2008-3117 (phpmotion) |
|
| Tags: cve-2008-3117 phpmotion | |
Related Items |
|
|
CVE-2008-1390 (s800i, AsteriskNOW, Asterisk Business Edition, Asterisk Appliance Developer Kit)
|
|
|
Brief: Bank of NY Mellon breaches keep growing
|
|
|
FrSIRT - SuSE Security Update Fixes Code Execution and DoS Vulnerabilities
|
|
|
CVE-2007-6243 (Flash Player)
|
|
|
CVE-2008-2907 (webchamado)
|
|
|
FrSIRT - Atomic Photo Album "apa_album_ID" SQL Injection Vulnerability
|
|
|
MS07-046 - Critical: Vulnerability in GDI Could Allow Remote Code Execution (938829)
|
|
