CVE-2012-10049

WebPageTest version 2.6 and earlier contains an arbitrary file upload vulnerability in the resultimage.php script. The application fails to validate or sanitize user-supplied input before saving uploaded files to a publicly accessible directory. This flaw allows remote attackers to upload and...

CVE-2012-10049

WebPageTest

PT-2025-32402 · Unknown · Webpagetest

Name of the Vulnerable Software and Affected Versions: WebPageTest versions prior to 2.7 Description: WebPageTest versions 2.6 and earlier contain an arbitrary file upload flaw in the resultimage.php script. The application does not validate or sanitize user-supplied input before saving uploaded...