Phpsimplicity » Simplicity Of Upload : Security Vulnerabilities, CVEs,
Unrestricted file upload vulnerability in upload.php in PHPSimplicity Simplicity oF Upload 1.3.2 allows remote attackers to execute arbitrary PHP code by uploading a file with a double extension, as demonstrated by .php.gif.
Max CVSS
6.8
EPSS Score
1.62%
Published
2010-04-27
Updated
2017-08-17
PHP file include vulnerability in download.php in PHPSimplicity Simplicity oF Upload before 1.3.1 allows remote attackers to include arbitrary local and remote files via the language parameter and a terminating null ("%00") characters.
Max CVSS
5.0
EPSS Score
0.89%
Published
2005-08-17
Updated
2008-09-05
2 vulnerabilities found