EUVD-2006-3680

Malware in sbrugna...

File Upload Vulnerability in DzzOffice v1.3.1 Frontend

DzzOffice is a cloud storage management tool , based on the free open source release , can be used as a personal network disk , team , enterprise network disk for use . A file upload vulnerability exists in DzzOffice v1.3.1 due to the program failing to strictly filter the $GET'tpath' parameter. ...