BugTraq
In-portal 5.0.3 Remote Arbitrary File Upload Exploit Apr 23 2010 04:21AM
eidelweiss cyberservices com
In-portal is prone to a remote arbitrary file-upload vulnerability

This issue may allow remote attackers to upload arbitrary files, including malicious scripts, and possibly to execute a script on the affected server.

In-portal Web 2.0 CMS v5.0.3 is affected by this issue. Other or lowers versions may be vulnerable as well.

Reports indicate that this issue is being exploited in the wild.

The following exploit code is available:

http://inj3ct0r.com/exploits/11949

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus