SMF CVE-2013-4465 Unspecified Arbitrary File Upload Vulnerability

SMF is prone to an unspecified arbitrary file-upload vulnerability because it fails to properly validate the file extensions when uploading them.

An attacker may leverage this issue to upload arbitrary files to the affected system; this can result in arbitrary code execution within the context of the affected application.

SMF 2.0.5 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus