Arbitrary Code Execution Vulnerability in Simple PHP Blog (SPHPBlog)

CVE-2005-2733 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

upload_img_cgi.php in Simple PHP Blog (SPHPBlog) does not properly restrict file extensions of uploaded files, which could allow remote attackers to execute arbitrary code.

Learn more about our Web Application Penetration Testing UK.