Mitra Iranian CMS 'manager.php' Remote Arbitrary File Upload Vulnerability

Mitra Iranian CMS 'manager.php' Remote Arbitrary File Upload Vulnerability

Mitra Iranian CMS is prone to a remote arbitrary file-upload vulnerability because it fails to sufficiently sanitize user-supplied input.

Attackers can exploit this issue to upload arbitrary code and run it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation; other attacks are also possible.

Mitra Iranian CMS versions 3.0.7 and prior are vulnerable.