2 matches found
CVE-2011-5077
Unrestricted file upload vulnerability in attachement.php in HDWiki 5.0 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in image directory...
CVE-2011-5077
Vulnerability : HDWiki 5.0 contains an unrestricted file upload in attachement.php that lets remote attackers execute arbitrary code by uploading a file with an executable extension and retrieving it from the image directory. Root cause : improper validation/handling of uploaded files enabling ar...