CVE-2007-5401 Information

Description

Unrestricted file upload vulnerability in uploadrequest.asp in Layton HelpBox 3.7.1 allows remote authenticated users to upload and execute arbitrary ASP files related to not properly checking file extensions.

Reference

http://secunia.com/advisories/27699 http://secunia.com/secunia_research/2007-94/advisory/ http://www.securityfocus.com/bid/27187 https://exchange.xforce.ibmcloud.com/vulnerabilities/39536