CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Phpsimplicity: Security Vulnerabilities

CVE-2009-4818

Unrestricted file upload vulnerability in upload.php in PHPSimplicity Simplicity oF Upload 1.3.2 allows remote attackers to execute arbitrary PHP code by uploading a file with a double extension, as demonstrated by .php.gif.

CVSS Score

6.8

EPSS Score

0.015

Published

2010-04-27

CVE-2005-2607

PHP file include vulnerability in download.php in PHPSimplicity Simplicity oF Upload before 1.3.1 allows remote attackers to include arbitrary local and remote files via the language parameter and a terminating null ("%00") characters.

CVSS Score

5.0

EPSS Score

0.006

Published

2005-08-17

Page 1

Vulnerabilities

Vulnerable Software

Phpsimplicity: Security Vulnerabilities

Products

Pricing

Contact Us