Unrestricted file upload vulnerability in pages/download.php in Iamma Simple Gallery 1.0 and 2.0 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the file in the uploads directory.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-02-06T11:00:00

Updated: 2024-08-07T11:20:25.388Z

Reserved: 2009-02-05T00:00:00

Link: CVE-2008-6084

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2009-02-06T11:30:00.453

Modified: 2017-09-29T01:32:57.697

Link: CVE-2008-6084

cve-icon Redhat

No data.