EgO v0.7b (fckeditor) Remote File Upload

vendor:

EgO

by:

ITSecTeam

7,5

CVSS

HIGH

Remote File Upload

434

CWE

Product Name: EgO

Affected Version From: v0.7b

Affected Version To: v0.7b

Patch Exists: No

Related CWE: N/A

CPE: a:vairux:ego

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: PHP

2008

EgO v0.7b (fckeditor) Remote File Upload

EgO is a PHP script that makes easier the set up and administration of a website. EgO supports customizable skins and modules that would be designed to fit specific needs. An attacker can exploit a vulnerability in EgO's FCKEditor to upload arbitrary files to the server, allowing them to execute arbitrary code on the server.

Mitigation:

Ensure that the FCKEditor is configured to only allow the upload of files with specific extensions, and that the files are stored in a directory outside of the web root.

Source

Exploit-DB raw data:

##########################################################
#Title: EgO v0.7b (fckeditor) Remote File Upload
#Download: http://sourceforge.net/projects/vairux-ego/
##########################################################
#AUTHOR: ITSecTeam
#Email: Bug@ITSecTeam.com
#Website: http://www.itsecteam.com
#Forum : http://forum.ITSecTeam.com
#Original Advisory: www.ITSecTeam.com/en/vulnerabilities/vulnerability53.htm
#Thanks: r3dm0v3,Mehr@n.s,pejvak,am!rkh@n
##########################################################

#DESCRIPTION (by vendor):#################################
EgO is a PHP script that makes easier the set up and administration of a
website.
EgO supports customizable skins and modules that would be designed to fit
specific
needs.EgO features a new WYSIWYG editor (FCKEditor), dynamic RSS 2.0
Syndication, etc..

#POC:#####################################################
http://site.com/FCKEditor/editor/filemanager/browser/
default/connectors/test.html