CVE-2007-1097

2007-02-26T17:28:00
ID CVE-2007-1097
Type cve
Reporter cve@mitre.org
Modified 2017-07-29T01:30:00

Description

Unrestricted file upload vulnerability in the onAttachFiles function in the upload tool (inc/lib/attachment.lib.php) in Wiclear before 0.11.1 allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors related to filename validation. NOTE: some details were obtained from third party information.