ReviewPost PHP Pro before 2.84 allows remote attackers to upload and execute arbitrary PHP files by posting a review file with multiple extensions, which bypasses the intended restrictions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.027
EPSS Ranking 83.8%