Delete Arbitrary File Vulnerability

vendor:

Webify photo gallery

by:

JIKO(JAWAD)

8,8

CVSS

HIGH

Delete Arbitrary File Vulnerability

N/A

CWE

Product Name: Webify photo gallery

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2020

Delete Arbitrary File Vulnerability

A vulnerability in Webify photo gallery allows an attacker to delete arbitrary files uploaded in post and upload their own files.

Mitigation:

Ensure that the application is not vulnerable to directory traversal attacks and that the application is not allowing arbitrary file uploads.

Source

Exploit-DB raw data:

#########################################################################################
[!x!] Informations:  
Name           : Webify photo gallery
Download       : http://webify.ws/photogallery
Vulnerability  : Delete Arbitrary File Vulnerability
Author         : JIKO(JAWAD)
Contact        : jalikom@hotmail.com
Site           : No-ExploiT.CoM (Is Back)
Notes          : No-ExploiT.CoM #########################################################################################
[!x!] Bug: Delete Arbitrary File Vulnerability   you can delete file uploaded in post and upload your files (for php if allowed you can :))   #########################################################################################
[!x!] Exploit:  Exploit: http://server/photogallery/uploads/X/ change X with number of post    ########################################################################################
[!x!] To: All friendsCyber_Devil Allah with you members [No-exploit.Com]