Описание
Unrestricted file upload vulnerability in Link Request Contact Form 3.4 allows remote attackers to execute arbitrary PHP code by uploading a file with a .php extension and an image content type, as demonstrated by image/jpeg.
Unrestricted file upload vulnerability in Link Request Contact Form 3.4 allows remote attackers to execute arbitrary PHP code by uploading a file with a .php extension and an image content type, as demonstrated by image/jpeg.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-3199
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34801
- https://www.exploit-db.com/exploits/4059
- http://corryl.altervista.org/index.php?mod=Download/Exploit#exploit-LRCF-v3.4.rar
- http://osvdb.org/37204
- http://secunia.com/advisories/25614
- http://www.securityfocus.com/bid/24408
- http://www.vupen.com/english/advisories/2007/2143
EPSS
Процентиль: 94%
0.13548
Средний
CVE ID
Связанные уязвимости
nvd
больше 18 лет назад
Unrestricted file upload vulnerability in Link Request Contact Form 3.4 allows remote attackers to execute arbitrary PHP code by uploading a file with a .php extension and an image content type, as demonstrated by image/jpeg.
EPSS
Процентиль: 94%
0.13548
Средний