PHP File Upload GLOBAL Variable Overwrite Vulnerability

info
discussion
exploit
solution
references

PHP File Upload GLOBAL Variable Overwrite Vulnerability

An exploit released for the e107 PHP CMS demonstrates this vulnerability.

Note, however, that an exploit is not required to take advantage of this vulnerability.

/data/vulnerabilities/exploits/e107_globals_overwrite_and_zendhashdel_poc.txt