CVE-2009-4818

2010-04-2715:00:00

mitre

www.cve.org

7.6 High

AI Score

Confidence

High

0.016 Low

EPSS

Percentile

87.5%

JSON

Unrestricted file upload vulnerability in upload.php in PHPSimplicity Simplicity oF Upload 1.3.2 allows remote attackers to execute arbitrary PHP code by uploading a file with a double extension, as demonstrated by .php.gif.

References

www.exploit-db.com/exploits/10568

www.securityfocus.com/bid/37424

exchange.xforce.ibmcloud.com/vulnerabilities/54952