CVE-2008-1495

2008-03-25T19:44:00
ID CVE-2008-1495
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:30:00

Description

Unrestricted file upload vulnerability in administrer/produits.php in PEEL, possibly 3.x and earlier, allows remote authenticated administrators to upload and execute arbitrary PHP files via a modified content type in an ajout action, as demonstrated by (1) image/gif and (2) application/pdf.