cpe:/a:qto:qtofilemanager:1.0 CVE-2008-2110 2008-05-07T19:20:00.000-04:00 2017-08-07T21:30:46.387-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-05-08T10:19:00.000-04:00 ALLOWS_OTHER_ACCESS BUGTRAQ 20080505 QTOFileManager V 1.0<== Remote File Upload Vulnerability BUGTRAQ 20080507 Re: QTOFileManager V 1.0<== Remote File Upload Vulnerability BID 29072 SREASON 3860 XF qtofilemanager-qtofm-file-upload(42236) Unrestricted file upload vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request.