Description
Inadequate checks in the Media Manager allowed users with "edit" privileges to change file extension to arbitrary extension, including .php and other potentially executable extensions.
Exploits
No known exploits found for this CVE.
Search Exploit-DB