CVE-2008-1790

Unrestricted file upload vulnerability in iScripts SocialWare allows remote authenticated administrators to upload arbitrary files via a crafted logo file in the "Manage Settings" functionality. NOTE: remote exploitation is facilitated by a separate SQL injection vulnerability.

Date published : 2008-04-15

http://www.securityfocus.com/bid/28670

https://www.exploit-db.com/exploits/5402