ImageManager in e107 before 0.617 does not properly check the types of uploaded files, which allows remote attackers to execute arbitrary code by uploading a PHP file via the upload parameter to images.php.
Max CVSS
7.5
EPSS Score
5.07%
Published
2004-12-31
Updated
2024-01-26
1 vulnerabilities found