Scriptsfeed » Auto Classifieds : Security Vulnerabilities, CVEs, (Code Execution)
Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in cars_images/.
Max CVSS
6.5
EPSS Score
0.67%
Published
2009-08-12
Updated
2017-09-29
1 vulnerabilities found