Pragyan CMS 'frmupload.html' Arbitrary File Upload Vulnerability
BID:51415
Info
Pragyan CMS 'frmupload.html' Arbitrary File Upload Vulnerability
| Bugtraq ID: | 51415 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 13 2012 12:00AM |
| Updated: | Jan 13 2012 12:00AM |
| Credit: | Dr.KroOoZ |
| Vulnerable: |
Pragyan CMS Pragyan CMS 2.6.1 |
| Not Vulnerable: | |
Discussion
Pragyan CMS 'frmupload.html' Arbitrary File Upload Vulnerability
Pragyan CMS is prone to an arbitrary-file-upload vulnerability because it fails to properly sanitize user-supplied input.
An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in arbitrary code execution within the context of the vulnerable application.
Pragyan CMS 2.6.1 is available; other versions may also be affected.
Pragyan CMS is prone to an arbitrary-file-upload vulnerability because it fails to properly sanitize user-supplied input.
An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in arbitrary code execution within the context of the vulnerable application.
Pragyan CMS 2.6.1 is available; other versions may also be affected.
Solution / Fix
Pragyan CMS 'frmupload.html' Arbitrary File Upload Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
References
Pragyan CMS 'frmupload.html' Arbitrary File Upload Vulnerability
References:
References:
- Pragyan CMS Sourceforge Page (Pragyan CMS)