CVE-2007-1549

Name of the Vulnerable Software and Affected Versions phpx version 3.5.15

Description The issue allows remote attackers to upload and execute arbitrary PHP scripts via an addImage action in the gallery.php file. This action places the uploaded scripts into the gallery/shelties/ directory.

Recommendations For phpx version 3.5.15, consider restricting access to the gallery.php file or disabling the addImage action to prevent the upload and execution of arbitrary PHP scripts until a patch is available.