Description
Multiple incomplete blacklist vulnerabilities in the serendipity_isActiveFile function in include/functions_images.inc.php in Serendipity before 2.0.2 allow remote authenticated users to execute arbitrary PHP code by uploading a file with a (1) .pht or (2) .phtml extension.
Remediation
References
Related Vulnerabilities
Oracle Database Server Other Vulnerability (CVE-2002-0856)
OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0704)
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7950)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-2190)