CVE-2009-4090
CVE-2009-4090 affects Telepark.wiki prior to or equal to 2.4.23. The flaw is an unrestricted file upload in ajax/addComment.php that allows an attacker to upload a file with a NULL byte in the name, enabling remote code execution. Multiple connected sources (NVD entry, OpenVAS NASL, CVE mirrors) ...