• info
• discussion
• exploit
• solution
• references

Maran PHP Forum Forum_write.PHP Arbitrary File Upload Vulnerability

Maran PHP Forum is prone to an arbitrary-file-upload vulnerability.

An attacker can exploit this vulnerability to upload PHP script code and execute it in the context of the webserver process.

Maran PHP Forum 09.04.2006 is vulnerable.