Unrestricted file upload

2008-05-1418:20:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.8%

JSON

Unrestricted file upload vulnerability in src/yopy_upload.php in Project-Based Calendaring System (PBCS) 0.7.1 allows remote authenticated users to upload arbitrary files to tmp/uploads.

CPENameOperatorVersion
project-based_calendaring__systemeq0.7.1

CPE	Name	Operator	Version
	project-based_calendaring__system	eq	0.7.1

References

www.securityfocus.com/bid/28991

exchange.xforce.ibmcloud.com/vulnerabilities/42105

www.exploit-db.com/exploits/5523