logo
DATABASE RESOURCES PRICING ABOUT US

Responsive Menu < 4.0.4 - CSRF to Arbitrary File Upload

Description

"Attackers could craft a request and trick an administrator into uploading a zip archive containing malicious PHP files. The attacker could then access those files to achieve remote code execution and further infect the targeted site."


Related