Arbitrary File Upload Vulnerability in PHP RFC1867.c

Arbitrary File Upload Vulnerability in PHP RFC1867.c

CVE-2004-0959 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

rfc1867.c in PHP before 5.0.2 allows local users to upload files to arbitrary locations via a PHP script with a certain MIME header that causes the "$_FILES" array to be modified.

Learn more about our User Device Pen Test.