CVE-2007-4026 in epesiinformation

Résumé

par MITRE

epesi framework before 0.8.6 does not properly verify file extensions, which allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors involving the gallery images upload feature. NOTE: some of these details are obtained from third party information.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

26/07/2007

Divulgation

26/07/2007

Modérer

accepté

Entrée

VDB-38027

CPE

prêt

EPSS

0.01165

KEV

non

Activités

très faible

Sources

Do you want to use VulDB in your project?

Use the official API to access entries easily!