2532designs 2532|Gigs Local File Include and Arbitrary File Upload Vulnerabilities

2532designs 2532|Gigs Local File Include and Arbitrary File Upload Vulnerabilities

2532|Gigs is prone to multiple local file-include vulnerabilities and an arbitrary-file-upload vulnerability.

An attacker can exploit these issues to upload arbitrary files onto the webserver, execute arbitrary local files within the context of the webserver, and obtain sensitive information.

2532|Gigs 1.2.2 is vulnerable; other versions may also be affected.