Phpstore » Phpcareers : Security Vulnerabilities, CVEs, CVSS score >= 4
Unrestricted file upload vulnerability in PHPStore Job Search (aka PHPCareers) allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a resume photo, then accessing it via a direct request to the file in jobseekers/jobseeker_profile_images.
Max CVSS
6.5
EPSS Score
0.80%
Published
2009-08-11
Updated
2017-09-29
1 vulnerabilities found