WhiteCollarGroup discovered multiple vulnerabilities on TheBlog 2.0, including SQL Injection, XSS Persistent (stored) and Arbitrary File Upload. The exploit is a PoC for SQL Injection on index.php?id=.
Agora-Project is an intuitive groupware under GPL (Based on PHP/MySQL). It contains many modules: File Manager (with versioning), Calendars (with resource calendars), Task Manager, Bookmark manager, Contacts, News, Forum, Instant Messaging, etc. An attacker can exploit this vulnerability by uploading a malicious file to the vulnerable server using a specially crafted form. The malicious file can then be accessed via the server's web interface.
WordPress Custom Content Type Manager plugin version 0.9.5.13-pl is vulnerable to an arbitrary file upload vulnerability. An attacker can upload a malicious file to the upload_form.php page and gain remote code execution. The malicious file can be uploaded with an image extension such as .jpg, .png, or .gif.
An arbitrary file upload vulnerability exists in the Wordpress drag and drop file upload plugin version 0.1. An attacker can upload a malicious file to the vulnerable server by sending a specially crafted HTTP POST request to the dnd-upload.php page. This can allow an attacker to gain remote code execution on the vulnerable server.
An arbitrary file upload vulnerability exists in Mac Photo Gallery 2.7 for Wordpress. An attacker can exploit this vulnerability by sending a malicious file to the upload-file.php page of the plugin. This can be done by using a CURL request with the malicious file as a parameter. The malicious file can then be accessed at the specified URL.
An arbitrary file upload vulnerability exists in the Pica Photo Gallery plugin version 1.0 for Wordpress. An attacker can exploit this vulnerability by sending a malicious file to the picaPhotosResize.php page via a POST request. This will allow the attacker to upload a malicious file to the server, which can then be accessed via the URL wp-content/uploads/pica-photo-gallery/info.php.
An arbitrary file upload vulnerability exists in Wordpress SfBrowser Version 1.4.5. An attacker can upload a malicious file to the vulnerable server by exploiting the vulnerability in the 'sfbrowser.php' file. This can be done by sending a specially crafted HTTP POST request to the vulnerable server.
An arbitrary file upload vulnerability exists in Wordpress Top Quark Architecture Version 2.10. An attacker can exploit this vulnerability by sending a specially crafted HTTP request to the vulnerable script. This can allow the attacker to upload a malicious file to the server, which can then be used to execute arbitrary code.
An attacker can upload arbitrary files to the vulnerable Wordpress User Meta Version 1.1.1 plugin by exploiting the uploader.php file. The attacker can then access the uploaded file by accessing the filepath shown in the result of the exploit.
ClanSuite is vulnerable to an arbitrary file upload vulnerability. This vulnerability allows an attacker to upload a malicious file to the server, which can then be used to gain access to the server. The vulnerability exists in the uploads/uploadify.php page, which allows an attacker to upload a file without any authentication. An attacker can use the curl command to upload a malicious file to the server, which can then be used to gain access to the server. The malicious file can be accessed at http://mysite.com/uploads/temps/info.php or http://mysite.com/application/uploads/temps/info.php
Services By CQR