Google Hack Honeypot File Upload Manager 1.3 'delall' Unauthorized File Access Vulnerability

2014-07-01T00:00:00
ID SSV:84577
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00

Description

No description provided by source.

                                        
                                            
                                                source: http://www.securityfocus.com/bid/27877/info

Google Hack Honeypot File Upload Manager is prone to an unauthorized file-access vulnerability. This issue occurs because the application fails to validate users before processing a certain HTTP request.

Attackers can exploit this issue to delete all files that have been uploaded to the application.

File Upload Manager 1.3 is vulnerable; other versions may also be affected. 

http://www.example.com/[path]/index.php?act=delall