CVE-2006-7109

2007-03-05T20:19:00
ID CVE-2006-7109
Type cve
Reporter cve@mitre.org
Modified 2017-07-29T01:29:00

Description

Unrestricted file upload vulnerability in IMCE before 1.6, a Drupal module, allows remote authenticated users to upload arbitrary PHP code via a filename with a double extension such as .php.gif.