AppRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability Network Vulnerability

Summary

appRain CMF is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. An attacker may leverage this issue to upload arbitrary files to the affected server this can result in arbitrary code execution within the context of the vulnerable application. appRain CMF 0.1.5 and prior versions are vulnerable.

References

http://www.apprain.com
http://www.securityfocus.com/bid/51576

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-1153
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Allaire JRun directory browsing vulnerability
Apache Tomcat Directory Listing and File disclosure
Adobe ColdFusion HTTP Response Splitting Vulnerability
Apache Tomcat Multiple Vulnerabilities June-09
Ampache Reflected Cross Site Scripting Vulnerability

appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability

Take action and discover your vulnerabilities