Unrestricted file upload vulnerability in auth.php in phpEmployment 1.8 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension during a regnew action, then accessing it via a direct request to the file in photoes/.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
w2b phpemployment 1.8 |