In-portal 5.0.3 Remote Arbitrary File Upload Exploit

2010-04-26T00:00:00
ID SECURITYVULNS:DOC:23697
Type securityvulns
Reporter Securityvulns
Modified 2010-04-26T00:00:00

Description

In-portal is prone to a remote arbitrary file-upload vulnerability

This issue may allow remote attackers to upload arbitrary files, including malicious scripts, and possibly to execute a script on the affected server.

In-portal Web 2.0 CMS v5.0.3 is affected by this issue. Other or lowers versions may be vulnerable as well.

Reports indicate that this issue is being exploited in the wild.

The following exploit code is available: http://inj3ct0r.com/exploits/11949