ImageManager in e107 prior to 0.617 does not properly check the types of uploaded files, which allows remote malicious users to execute arbitrary code by uploading a PHP file via the upload parameter to images.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
e107 e107 |