CVE-2007-5733

CVE-2007-5733 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Unrestricted file upload vulnerability in upload/upload.php in Japanese PHP Gallery Hosting, when Open directory mode is enabled, allows remote attackers to upload and execute arbitrary PHP code via a ServerPath parameter specifying a filename with a double extension. NOTE: some of these details are obtained from third party information.

Learn more about our Cis Benchmark Audit For Server Software.