2 matches found
OpenEMR 4 multiple defects and repair-vulnerability warning-the black bar safety net
OpenEMR 4 Level @ Smash The Stack Summary: Patient Photograph Arbitrary File Upload Initial Comment: 1. Login with valid User/Pass 2. Patient/Client - Search/New Patient search for anything 3. Click Documents - Patient Photograph 4. Upload Shell URL:...
CVE-2007-3429
Unrestricted file upload vulnerability in signup.php in e107 0.7.8 and earlier, when photograph upload is enabled, allows remote attackers to upload and execute arbitrary PHP code via a filename with a double extension such as .php.jpg...