Unrestricted file upload vulnerability in Yehe 2.0 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the envoyer feature. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
References
Configurations
Information
Published : 2009-03-31 10:30
Updated : 2017-08-16 18:29
NVD link : CVE-2008-6568
Mitre link : CVE-2008-6568
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
yehe
- yehe