FreeBSD : pivotx -- Multiple unrestricted file upload vulnerabilities (7313b0e3-27b4-11e5-a15a-50af736ef1c0)
Low Nessus Plugin ID 84703
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionPivotx reports :
Multiple unrestricted file upload vulnerabilities in fileupload.php in PivotX before 2.3.9 allow remote authenticated users to execute arbitrary PHP code by uploading a file with a (1) .php or (2) .php# extension, and then accessing it via unspecified vectors.
SolutionUpdate the affected package.