Full title: qdPM 9.1 Authenticated Shell Upload Exploit Category: remote exploits Platform: php A remote code execution vulnerability exists in qdPM versions 9.1 and below. An attacker can upload a malicious PHP code file via the profile photo functionality by leveraging a path traversal vulnerability in the users['photop_preview'] delete photo feature thus allowing bypass of .htaccess protection. NOTE: this issue exists because of an incomplete fix for CVE-2015-3884. # 0day.today @ http://0day.today/