Collabtive 'manageuser.php' Arbitrary File Upload Vulnerability
BID:53813
Info
Collabtive 'manageuser.php' Arbitrary File Upload Vulnerability
| Bugtraq ID: | 53813 |
| Class: | Input Validation Error |
| CVE: |
CVE-2012-2670 |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 05 2012 12:00AM |
| Updated: | Mar 19 2015 07:35AM |
| Credit: | Mark Hoopes |
| Vulnerable: |
Collabtive Collabtive 0.6.5 Collabtive Collabtive 0.6.3 Collabtive Collabtive 0.6.1 Collabtive Collabtive 0.7.5 |
| Not Vulnerable: |
Collabtive Collabtive 0.7.6 |
Discussion
Collabtive 'manageuser.php' Arbitrary File Upload Vulnerability
Collabtive is prone to a vulnerability that lets an attacker upload and execute arbitrary script code in the context of the affected web server process. The issue occurs because the application fails to sufficiently sanitize user-supplied input.
Collabtive is prone to a vulnerability that lets an attacker upload and execute arbitrary script code in the context of the affected web server process. The issue occurs because the application fails to sufficiently sanitize user-supplied input.
Exploit / POC
Collabtive 'manageuser.php' Arbitrary File Upload Vulnerability
Attackers may exploit this issue through a browser.
Attackers may exploit this issue through a browser.
Solution / Fix
Collabtive 'manageuser.php' Arbitrary File Upload Vulnerability
Solution:
Updates are available. Please see the references for more information.
Solution:
Updates are available. Please see the references for more information.
References
Collabtive 'manageuser.php' Arbitrary File Upload Vulnerability
References:
References:
- Collabtive 0.7.6 released (Collabtive)
- Collabtive Homepage (Collabtive)
- Arbitrary File Upload/Execution in Collabtive (Mark Hoopes)