Unrated severityNVD Advisory· Published Apr 27, 2010· Updated Jun 16, 2026
CVE-2009-4818
CVE-2009-4818
Description
Unrestricted file upload vulnerability in upload.php in PHPSimplicity Simplicity oF Upload 1.3.2 allows remote attackers to execute arbitrary PHP code by uploading a file with a double extension, as demonstrated by .php.gif.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:phpsimplicity:simplicity_of_upload:1.3.2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:phpsimplicity:simplicity_of_upload:1.3.2:*:*:*:*:*:*:*
- (no CPE)range: =1.3.2
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.