cpe:/a:camera_life:camera_life:2.6.2b4 CVE-2008-4366 2008-09-30T19:24:53.683-04:00 2017-09-28T21:32:08.133-04:00 6.5 NETWORK LOW SINGLE_INSTANCE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-10-01T13:17:00.000-04:00 ALLOWS_OTHER_ACCESS BID 31456 SREASON 4344 EXPLOIT-DB 6594 XF cameralife-image-file-upload(45492) Unrestricted file upload vulnerability in the image upload component in Camera Life 2.6.2b4 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in a user directory under images/photos/upload.