Adam Mmedici File Upload Manager Arbitrary File Upload
Remote / Network Access
Loss of Integrity
File Upload Manager contains a flaw that may allow a malicious user to bypass the file extension check. The issue is triggered when multiple tilde characters are submitted from a third-party form to the 'test' variable. It is possible that the flaw may allow the uploading of arbitrary files resulting in the execution of arbitrary code or file disclosure.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.