• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Barbo91 upload.php Arbitrary File Upload Vulnerability

Barbo91 is prone to an arbitrary-file-upload vulnerability because the application fails to verify the type of file being uploaded.

Exploiting this issue could allow an attacker to upload and execute arbitrary script code in the context of the affected webserver process.

This issue affects Barbo91 1.1; other versions may also be vulnerable.