CVE-2009-4818 Information

Description

Unrestricted file upload vulnerability in upload.php in PHPSimplicity Simplicity oF Upload 1.3.2 allows remote attackers to execute arbitrary PHP code by uploading a file with a double extension as demonstrated by .php.gif.

Reference

http://www.exploit-db.com/exploits/10568 http://www.securityfocus.com/bid/37424 https://exchange.xforce.ibmcloud.com/vulnerabilities/54952