Unrestricted File Upload Vulnerability in PHP F1 Max's File Uploader
CVE-2008-0373

Currently unrated

Key Information:

Vendor: PHP
Status: F1 Maxs File Uploader
Vendor: CVE Published:; 22 January 2008

What is CVE-2008-0373?

The File Uploader component of PHP F1 Max is susceptible to an unrestricted file upload vulnerability. This flaw enables remote attackers to upload malicious PHP files to the server, potentially leading to unauthorized code execution. Exploitation of this issue can compromise server security and allow attackers to perform a range of malicious activities, including data theft, system manipulation, and full server control.

References

http://www.securityfocus.com/archive/1/486335/100/0/threaded

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/39740

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/27285

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 22, 2008
Vulnerability Reserved
Jan 22, 2008