CVE-2008-2110

Unrestricted file upload vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request.
Configurations

Configuration 1 (hide)

cpe:2.3:a:qto:qtofilemanager:1.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-05-07 23:20

Updated : 2024-02-04 17:33


NVD link : CVE-2008-2110

Mitre link : CVE-2008-2110

CVE.ORG link : CVE-2008-2110


JSON object : View

Products Affected

qto

  • qtofilemanager
CWE
CWE-20

Improper Input Validation