CVE-2009-2270
CVE-2009-2270 describes an unrestricted file upload in the DedecMS 5.3 component, specifically in member/uploads_edit.php, allowing remote code execution when an attacker uploads a double-extension filename (e.g., .jpg.php) and then accesses it via unspecified vectors. Affected software: DedecMS ...