FlashBlog 0.31 beta - Unauthenticated Arbitrary File Upload via imgupload.php
Unrestricted file upload vulnerability in admin/Editor/imgupload.php in FlashBlog 0.31 beta allows remote attackers to execute arbitrary code by uploading a .php file, then accessing it via a direct request to the file in tus_imagenes/.