CVE-2007-0123

CVE-2007-0123 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Unrestricted file upload vulnerability in Uber Uploader 4.2 allows remote attackers to upload and execute arbitrary PHP scripts by naming them with a .phtml extension, which bypasses the .php extension check but is still executable on some server configurations.

Learn more about our Cis Benchmark Audit For Server Software.