CVE-2005-4423 Information

Description

Unrestricted file upload vulnerability in PHPFM before 0.2.3 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension to an accessible directory as demonstrated using a file with a .php extension aka \upload phpshell.\

Reference

http://cert.uni-stuttgart.de/archive/bugtraq/2005/11/msg00085.html http://www.securityfocus.com/bid/15335