### [CVE-2007-4781](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4781)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

administrator/index.php in the installer component (com_installer) in Joomla! 1.5 Beta1, Beta2, and RC1 allows remote authenticated administrators to upload arbitrary files to tmp/ via the "Upload Package File" functionality, which is accessible when com_installer is the value of the option parameter.

### POC

#### Reference
- https://www.exploit-db.com/exploits/4350

#### Github
No PoCs found on GitHub currently.