PHP file include vulnerability in download.php in PHPSimplicity Simplicity oF Upload prior to 1.3.1 allows remote malicious users to include arbitrary local and remote files via the language parameter and a terminating null ("%00") characters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpsimplicity simplicity of upload 1.3 |