Concrete5 FlashUploader - Arbitrary .SWF File Upload
Concrete5 FlashUploader - Arbitrary .SWF File Upload source: https://www.securityfocus.com/bid/53640/info Concrete CMS is prone to following vulnerabilities because it fails to properly handle user-supplied input. 1. Multiple cross-site scripting vulnerabilities 2. An arbitrary-file-upload...