CVE-2008-4366
Camera Life 2.6.2b4 - Authenticated Arbitrary File Upload via Image Upload Component
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2008-4366. PoCs published by Mi4night.
AI-analyzed exploit summary This is a writeup describing an arbitrary file upload vulnerability in CameraLife 2.6.2b4, allowing authenticated users to upload and execute PHP files. The exploit path is provided, but no functional code is included.
Description
Unrestricted file upload vulnerability in the image upload component in Camera Life 2.6.2b4 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in a user directory under images/photos/upload.
Exploits (1)
This is a writeup describing an arbitrary file upload vulnerability in CameraLife 2.6.2b4, allowing authenticated users to upload and execute PHP files. The exploit path is provided, but no functional code is included.