Mambo Hotornot Component Uploadfile.PHP Arbitrary File Upload Vulnerability

info
discussion
exploit
solution
references

Mambo Hotornot Component Uploadfile.PHP Arbitrary File Upload Vulnerability

The Mambo Hotornot is prone to an arbitrary-file-upload vulnerability.

Exploiting this issue may allow an attacker to compromise the affected application; other attacks are also possible.

Version 1.2.2 is vulnerable; other versions may also be affected.