epesi framework before 0.8.6 does not properly verify file extensions, which allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors involving the gallery images upload feature. NOTE: some of these details are obtained from third party information.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-07-26T19:00:00
Updated: 2017-07-28T12:57:01
Reserved: 2007-07-26T00:00:00
Link: CVE-2007-4026
JSON object: View
NVD Information
Status : Modified
Published: 2007-07-26T19:30:00.000
Modified: 2017-07-29T01:32:41.317
Link: CVE-2007-4026
JSON object: View
Redhat Information
No data.
CWE