CVE-2007-3773

2007-07-1522:00:00

mitre

www.cve.org

AI Score

7.1

Confidence

High

EPSS

0.008

Percentile

81.7%

JSON

Cross-site request forgery (CSRF) vulnerability in the Email-Template module in Generic YouTube Clone Script allows remote attackers to upload files with arbitrary file types to templates/emails/ as administrators.

References

chxsecurity.org/advisories/adv-2-mid.txt

osvdb.org/38692

securityreason.com/securityalert/2896

www.securityfocus.com/archive/1/473192/100/0/threaded