jQuery File Upload is a is a user-contributed open-source package for ... Upload.php and UploadHandler.php – under the directory server/php path within the code, and found a glaring vulnerability.