CVE-2006-7070
CVE-2006-7070 affects Etomite CMS 0.6.1 and earlier. Unrestricted file upload via manager/media/ibrowser/scripts/rfiles.php using nfile[] allows a filename containing .php followed by a valid image extension (e.g., .gif or .jpg) and, after rename(), enables remote upload and execution of arbitrar...