7.3 High
AI Score
Confidence
High
8.5 High
CVSS2
Access Vector
Access Complexity
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
0.004 Low
EPSS
Percentile
72.1%
Unrestricted file upload vulnerability in form_upload.php in PHPG Upload 1.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CPE | Name | Operator | Version |
---|---|---|---|
phpg_upload:phpg_upload | phpg upload | eq | 1.0 |