Arbitrary File Upload Vulnerability

vendor:

The Rat CMS

by:

Securitylab.ir

7.5

CVSS

HIGH

Arbitrary File Upload Vulnerability

N/A

CWE

Product Name: The Rat CMS

Affected Version From: Alpha 2

Affected Version To: Alpha 2

Patch Exists: N/A

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

Arbitrary File Upload Vulnerability

The Rat CMS Alpha 2 is vulnerable to an arbitrary file upload vulnerability. An attacker can upload a malicious file such as a shell.php file which includes GIF89a; followed by malicious code. The uploaded file can be found in the images directory.

Mitigation:

N/A

Source

Exploit-DB raw data:

########################## Securitylab.ir ########################
# Application Info:
# Name: The Rat Cms
# Version: Alpha 2
# DL: http://downloads.sourceforge.net/the-rat-cms/trcms_pre_alpha_2.zip?modtime=1174590953&big_mirror=0
#################################################################
# Discoverd By: Securitylab.ir
# Website: http://securitylab.ir
# Contacts: admin[at]securitylab.ir & info@securitylab[dot]ir
#################################################################
# Vulnerability Info:
# Type: Arbitrary File Upload Vulnerability
# Risk: High
#===========================================================
# http://site.com/[path]/admin/add_album.php
#
# choose shell
#
# shell.php include :
# GIF89a;
# <? your shell code ?>
#
# Your shell Upload Here :
# http://site.com/[Path]/images
#===========================================================
#################################################################
# Securitylab Security Research Team
###################################################################

# milw0rm.com [2009-09-09]