mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-30 04:49:42 +00:00
836 B
836 B
CVE-2008-2574
Description
Unrestricted file upload vulnerability in admin/Editor/imgupload.php in FlashBlog 0.31 beta allows remote attackers to execute arbitrary code by uploading a .php file, then accessing it via a direct request to the file in tus_imagenes/.
POC
Reference
- http://securityreason.com/securityalert/3928
- http://securityreason.com/securityalert/3928
- https://www.exploit-db.com/exploits/5728
- https://www.exploit-db.com/exploits/5728
Github
No PoCs found on GitHub currently.