microUpload Upload Shell Vulnerability

vendor:

microUpload

by:

Phenom

7,8

CVSS

HIGH

Remote File Upload

434

CWE

Product Name: microUpload

Affected Version From: microUpload 1.0

Affected Version To: microUpload 1.2

Patch Exists: YES

Related CWE: CVE-2020-1234

CPE: cpe:a:phptoys:microupload

Metasploit: https://www.rapid7.com/db/vulnerabilities/msft-cve-2020-1234/

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: Windows, Linux, Mac

2020

microUpload Upload Shell Vulnerability

microUpload is a vulnerable file uploader script written in PHP. It is vulnerable to a remote file upload attack, which allows an attacker to upload a malicious file to the server. The attacker can then execute the malicious file on the server, allowing them to gain access to the server and its data.

Mitigation:

The best way to mitigate this vulnerability is to ensure that all file uploads are properly validated and sanitized before being uploaded to the server. Additionally, the server should be configured to only allow certain file types to be uploaded.

Source

Exploit-DB raw data:

------------------------------------------------------
------------------------------------------------------

 _____  _                                
|  __ \| |                               
| |__) | |__   ___ _ __   ___  _ __ ___  
|  ___/| '_ \ / _ \ '_ \ / _/\| '_ ` _ \              
| |    | | | |  __/ | | | (_) | | | | | |             
|_|    |_| |_|\___|_| |_|\/__/|_| |_| |_|             

                                                      
------------------------------------------------------                                                      
------------------------------------------------------

#######   microUpload Upload Shell Vulnerability   #####################
#
#       Author : Phenom
#       
#       mail : sys.phenom.sys@gmail.com
#
#       app vendor : www.phptoys.com
#
#################################################################################

####### Exploit #################################################################
#
#     1- http://site.com/path/microUpload.php
#
#         upload your shell 
#
#     2- http://site.com/path/yourshell.php
#
#         get your shell
#
#################################################################################