CVE-2008-6660 Information

Description

Unrestricted file upload vulnerability in bigdump.php in Alexey Ozerov BigDump 0.29b allows remote attackers to execute arbitrary code by uploading a file with an executable extension followed by a .sql extension then accessing this file via a direct request. NOTE: some of these details are obtained from third party information.

Reference

http://www.securityfocus.com/archive/1/498093/100/0/threaded http://www.securityfocus.com/bid/32152 https://exchange.xforce.ibmcloud.com/vulnerabilities/46539