CVE-2008-6492

2009-03-2000:00:00

mitre

www.cve.org

7.7 High

AI Score

Confidence

Low

0.037 Low

EPSS

Percentile

91.8%

JSON

Unrestricted file upload vulnerability in process.php in Tizag Countdown Creator 3 allows remote attackers to execute arbitrary code by uploading a file with an executable extension via index.php, then accessing the uploaded file via a direct request to the file in pics/. NOTE: some of these details are obtained from third party information.