CVE-2008-6920
CVE-2008-6920 describes an unrestricted file upload in auth.php of phpEmployment 1.8, enabling remote code execution by uploading a file with an executable extension during regnew and then accessing it via a direct request to the file under photoes/. The core issue is lack of proper validation an...