CVE-2008-1790 (socialware) [Sitemap] - HeapOverflow Computer Security Community & Forums : Heap Overflow.com
PDA

View Full Version : CVE-2008-1790 (socialware)

Heap
15-04-08, 22:32
Unrestricted file upload vulnerability in iScripts SocialWare allows remote authenticated administrators to upload arbitrary files via a crafted logo file in the "Manage Settings" functionality. NOTE: remote exploitation is facilitated by a separate SQL injection vulnerability.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1790)