CVE-2008-1988
CVE-2008-1988 describes an unrestricted file upload in EncapsGallery 2.0.2. The flaw exists in the file_upload function of core/misc.class.php, allowing remote authenticated administrators to upload and execute arbitrary PHP files by using an executable extension, then accessing the file directly...