CVE-2007-4781

2007-09-10T21:17:00
ID CVE-2007-4781
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:29:00

Description

administrator/index.php in the installer component (com_installer) in Joomla! 1.5 Beta1, Beta2, and RC1 allows remote authenticated administrators to upload arbitrary files to tmp/ via the "Upload Package File" functionality, which is accessible when com_installer is the value of the option parameter.