Dotclear Arbitrary File Upload Vulnerability Network Vulnerability

Summary

This host is running Dotclear and is prone to arbitrary file upload vulnerability.

Impact

Successful exploitation allows remote authenticated users to upload and execute arbitrary PHP code. Impact Level: Application

Solution

Upgrade to Dotclear version 2.2.3 or later, For updates refer to http://dotclear.org/download

Insight

The flaw is caused by improper validation of user-supplied input passed via the 'updateFile()' function in inc/core/class.dc.media.php, which allows attackers to execute arbitrary PHP code by uploading a PHP file.

Affected

Dotclear versions prior to 2.2.3

References

http://dev.dotclear.org/2.0/changeset/2:3427
http://dotclear.org/blog/post/2011/04/01/Dotclear-2.2.3
http://secunia.com/advisories/44049

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-1584
CVSS Base Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

Related Vulnerabilities

Apache Tomcat TroubleShooter Servlet Installed
AeroMail Cross Site Request Forgery, HTML Injection and Cross Site Scripting Vulnerabilities
Allaire JRun directory browsing vulnerability
Apache Tomcat DOS Device Name XSS
Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities

Take action and discover your vulnerabilities