CVE-2007-4817

2007-09-1119:00:00

mitre

www.cve.org

7.6 High

AI Score

Confidence

Low

0.094 Low

EPSS

Percentile

94.7%

JSON

Unrestricted file upload vulnerability in the Restaurante (com_restaurante) component for Joomla! allows remote attackers to upload and execute arbitrary PHP code via an upload action specifying a filename with a double extension such as .php.jpg, which creates an accessible file under img_original/.

References

secunia.com/advisories/26756

www.attrition.org/pipermail/vim/2007-September/001779.html

www.securityfocus.com/bid/25612

www.vupen.com/english/advisories/2007/3139

exchange.xforce.ibmcloud.com/vulnerabilities/36538

www.exploit-db.com/exploits/4383