NuytsTech Security

CVE-2006-1363

by ·

images.php in Justin White (aka YTZ) Free Web Publishing System (FreeWPS) 2.11 allows remote attackers to execute arbitrary PHP code by uploading a .php file into the /upload directory as specified in the dirPath parameter, then performing a direct request to that file.

Date published : 2006-03-23

https://www.exploit-db.com/exploits/1600

http://secunia.com/advisories/19343

Tags: