Tozz

1 exploit Active since Aug 2002
CVE-2002-0484 EXPLOITDB php WORKING POC
PHP - Unauthenticated Arbitrary File Write via move_uploaded_file
move_uploaded_file in PHP does not does not check for the base directory (open_basedir), which could allow remote attackers to upload files to unintended locations on the system.