Oxwall '/admin/settings/user' Multiple Arbitrary PHP Code Execution Vulnerabilities

Oxwall is prone to multiple arbitrary PHP code-execution vulnerabilities because it fails to properly verify the uploaded files.

An attacker can exploit these issues to execute arbitrary PHP code within the context of the web server.

Oxwall 1.7.0 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus