CVE-2005-3767
Exponent CMS 0.96.3 and later versions contain a vulnerability where the uploader does not properly restrict file types, enabling remote attackers to upload and execute PHP files. The underlying issue is insufficient validation of uploaded content, allowing arbitrary PHP code execution via the CM...