BoastMachine Arbitrary File Upload Vulnerability Network Vulnerability

Summary

boastMachine is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to adequately sanitize user-supplied input. An attacker can exploit this vulnerability to upload arbitrary code and run it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation other attacks are also possible. boastMachine 3.1 is affected other versions may be vulnerable as well.

References

http://www.securityfocus.com/bid/37940

Updated on 2017-03-28

Severity

Classification

CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

APC PowerChute Network Shutdown HTTP Response Splitting Vulnerability
Admidio get_file.php Remote File Disclosure Vulnerability
Apache Tiles Multiple XSS Vulnerability
AjaXplorer Remote Command Injection and Local File Disclosure Vulnerabilities
Apache Tomcat TroubleShooter Servlet Installed

boastMachine Arbitrary File Upload Vulnerability

Take action and discover your vulnerabilities