Joomla! JE Story Submit 'update()' Function Arbitrary File Upload Vulnerability
BID:51677
Info
Joomla! JE Story Submit 'update()' Function Arbitrary File Upload Vulnerability
| Bugtraq ID: | 51677 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 26 2012 12:00AM |
| Updated: | Jan 26 2012 12:00AM |
| Credit: | Robert Cooper |
| Vulnerable: |
Joomla JE Story Submit 1.9.3 |
| Not Vulnerable: | |
Discussion
Joomla! JE Story Submit 'update()' Function Arbitrary File Upload Vulnerability
Joomla! JE Story Submit component is prone to a vulnerability that lets attackers upload arbitrary files. This issue occurs because the application fails to sufficiently sanitize user-supplied input.
Exploiting this issue could allow an attacker to upload and execute arbitrary script code in the context of the affected webserver process. This may help the attacker compromise the application; other attacks are possible.
Joomla JE Story Submit 1.9.3 and prior versions are vulnerable.
Joomla! JE Story Submit component is prone to a vulnerability that lets attackers upload arbitrary files. This issue occurs because the application fails to sufficiently sanitize user-supplied input.
Exploiting this issue could allow an attacker to upload and execute arbitrary script code in the context of the affected webserver process. This may help the attacker compromise the application; other attacks are possible.
Joomla JE Story Submit 1.9.3 and prior versions are vulnerable.
Exploit / POC
Joomla! JE Story Submit 'update()' Function Arbitrary File Upload Vulnerability
Attackers may exploit this issue through a browser.
Attackers may exploit this issue through a browser.
Solution / Fix
Joomla! JE Story Submit 'update()' Function Arbitrary File Upload Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Joomla! JE Story Submit 'update()' Function Arbitrary File Upload Vulnerability
References:
References:
- Joomla! Homepage (Joomla )