Joomla! Aclsfgpl Component 'index.php' Arbitrary File Upload Vulnerability

2014-01-07T00:00:00
ID EDB-ID:38943
Type exploitdb
Reporter TUNISIAN CYBER
Modified 2014-01-07T00:00:00

Description

Joomla! Aclsfgpl Component 'index.php' Arbitrary File Upload Vulnerability. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/64705/info

The Aclsfgpl component for Joomla! is prone to a vulnerability that lets attackers upload arbitrary files. The issue occurs because the application fails to adequately sanitize user-supplied input.

An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in arbitrary code execution within the context of the vulnerable application. 

http://www.example.com/index.php?option=com_aclsfgpl&Itemid=[num]&ct=servs1&md=add_form