CVE-2006-7134

Name of the Vulnerable Software and Affected Versions Upload Tool for PHP version 1.0

Description The issue concerns an unrestricted file upload vulnerability. This allows remote attackers to upload and execute arbitrary files, particularly those with executable extensions such as .php.

Recommendations For Upload Tool for PHP version 1.0, consider restricting file uploads to only allow specific, non-executable file extensions as a temporary workaround until a patch is available. Restrict access to the main user.php file to minimize the risk of exploitation. Avoid using the Upload Tool for PHP until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.