CVE-2007-3292

Livecms - Unrestricted File Upload

Title source: rule

Description

Unrestricted file upload vulnerability in LiveCMS 3.4 and earlier allows remote attackers to upload and execute arbitrary PHP code by specifying a PHP file type in a parameter intended for "a small image" associated with an article.

Exploits (1)

exploitdb WORKING POC VERIFIED
by g00ns · perlwebappsphp
https://www.exploit-db.com/exploits/4082

References (4)

Scores

EPSS 0.0624
EPSS Percentile 90.9%

Details

Status published
Products (6)
livecms/livecms 3.0
livecms/livecms 3.3
livecms/livecms 3.3_rc1
livecms/livecms 3.3_rc2
livecms/livecms 3.4
livecms/livecms 3.4a
Published Jun 20, 2007
Tracked Since Feb 18, 2026