CVE-2011-3833
Summary
Unrestricted file upload vulnerability in ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in an unspecified directory.
- MEDIUM
- NETWORK
- SINGLE
- PARTIAL
- PARTIAL
- PARTIAL
References
Advisory Timeline
- Published