Vulnerabilities > Phpsimplicity > Simplicity OF Upload
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-04-27 | CVE-2009-4818 | Unspecified vulnerability in PHPsimplicity Simplicity of Upload 1.3.2 Unrestricted file upload vulnerability in upload.php in PHPSimplicity Simplicity oF Upload 1.3.2 allows remote attackers to execute arbitrary PHP code by uploading a file with a double extension, as demonstrated by .php.gif. network phpsimplicity | 6.8 |
2005-08-17 | CVE-2005-2607 | Remote File Include vulnerability in PHPsimplicity Simplicity of Upload 1.3 PHP file include vulnerability in download.php in PHPSimplicity Simplicity oF Upload before 1.3.1 allows remote attackers to include arbitrary local and remote files via the language parameter and a terminating null ("%00") characters. | 5.0 |