CVE-2008-4428

CVE-2008-4428 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Unrestricted file upload vulnerability in upload.php in Phlatline's Personal Information Manager (pPIM) 1.0 and earlier allows remote attackers to execute arbitrary code by uploading a .php file, then accessing it via a direct request to the file in the top-level directory.

Learn more about our Web Application Penetration Testing UK.