Unrestricted file upload vulnerability in eFileMan 7.1.0.87-88 allows remote attackers to upload arbitrary files, with "uploads/upload_file." destination filenames, via unspecified vectors to upload.cgi, accessed from upload.html.Referenceshttp://osvdb.org/39013http://www.securityfocus.com/archive/1/482683/100/0/threadedhttp://www.securityfocus.com/bid/26184http://securityreason.com/securityalert/3323
