Cardinal CMS 'upload.php' Arbitrary File Upload Vulnerability
BID:30677
Info
Cardinal CMS 'upload.php' Arbitrary File Upload Vulnerability
| Bugtraq ID: | 30677 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-5156 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 13 2008 12:00AM |
| Updated: | May 07 2015 05:24PM |
| Credit: | Rake & Ciph3r from S4rK3VT TEAM |
| Vulnerable: |
CardinalCMS Cardinal CMS 1.2 |
| Not Vulnerable: | |
Discussion
Cardinal CMS 'upload.php' Arbitrary File Upload Vulnerability
Cardinal CMS is prone to a vulnerability that lets remote attackers upload and execute arbitrary script code on an affected computer with the privileges of the webserver process. The issue occurs because the application fails to sanitize user-supplied input.
Cardinal CMS 1.2 is vulnerable; other versions may also be affected.
Cardinal CMS is prone to a vulnerability that lets remote attackers upload and execute arbitrary script code on an affected computer with the privileges of the webserver process. The issue occurs because the application fails to sanitize user-supplied input.
Cardinal CMS 1.2 is vulnerable; other versions may also be affected.
Exploit / POC
Cardinal CMS 'upload.php' Arbitrary File Upload Vulnerability
Attackers may exploit this issue with a web browser.
The following exploit code is available:
Attackers may exploit this issue with a web browser.
The following exploit code is available:
Solution / Fix
Cardinal CMS 'upload.php' Arbitrary File Upload Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Cardinal CMS 'upload.php' Arbitrary File Upload Vulnerability
References:
References:
- Cardinal CMS Homepage (Cardinal CMS)