Unrestricted file upload vulnerability in The Address Book 1.04e validates the Content-Type header but not the file extension, which allows remote malicious users to upload arbitrary PHP scripts.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
the address book the address book 1.04e |