The file extension check in GNUBoard 3.40 and previous versions only verifies extensions that contain all lowercase letters, which allows remote malicious users to upload arbitrary files via file extensions that include uppercase letters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sir gnuboard |