Luftguitar CMS (Upload Arbitrary File) Vulnerability

2010-09-13T00:00:00
ID 1337DAY-ID-14069
Type zdt
Reporter Abysssec
Modified 2010-09-13T00:00:00

Description

Exploit for asp platform in category web applications

                                        
                                            ====================================================
Luftguitar CMS (Upload Arbitrary File) Vulnerability
====================================================

  Title            :  Luftguitar CMS Vulnerability: Upload arbitrary file
  Affected Version :  Luftguitar CMS 2.0.2
  Discovery        :  www.abysssec.com
  Vendor       : 
 
  Demo         : 
  Download Links   :  http://sourceforge.net/projects/luftguitarcms/             
               
 
Description :
===========================================================================================     
 
  This CMS have Upload arbitrary file valnerability with Image Gallery.
 
  you can upload your file with this path:
    http://Example.com/Backstage/Components/FreeTextBox/ftb.imagegallery.aspx 
 
 
  Uploaded files will be placing in this path:
 
    http://Example.com/Images/
 
 
=========================================================================================== 



#  0day.today [2018-01-10]  #