CVE-2011-5136 Information

Description

showImg.php in EPractize Labs Subscription Manager possibly 1.0 allows remote attackers to overwrite arbitrary files via the db parameter.

Reference

http://osvdb.org/77505 http://seclists.org/fulldisclosure/2011/Dec/125 http://secunia.com/advisories/47072 https://exchange.xforce.ibmcloud.com/vulnerabilities/71630