Unrestricted file upload vulnerability in pages/download.php in Iamma Simple Gallery 1.0 and 2.0 allows remote malicious users to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the file in the uploads directory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
.matteoiammarrone iamma simple gallery 2.0 |
||
.matteoiammarrone iamma simple gallery 1.0 |