PHP Advanced Transfer Manager (phpATM) 1.21 allows remote malicious users to upload arbitrary files via filenames containing multiple file extensions, as demonstrated using a filename ending in "php.ns", which allows execution of arbitrary PHP code.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bugada andrea php advanced transfer manager 1.21 |