VYPR

Phphotoalbum

Sign in to watch

by Stoverud

CVEs (1)

CVESevRiskCVSSEPSSKEVPublishedDescription
CVE-2009-48190.030.03Apr 27, 2010Multiple unrestricted file upload vulnerabilities in upload.php in PHPhotoalbum allow remote attackers to execute arbitrary code by uploading a file with a (1) .php.pgif or (2) .php.pjpeg double extension, then accessing it via a direct request to the file in albums/userpics/.