BLOG 1.55B (image_upload.php) Arbitrary File Upload Vulnerability

2008-12-21T00:00:00
ID 1337DAY-ID-4513
Type zdt
Reporter Piker
Modified 2008-12-21T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =================================================================
BLOG 1.55B (image_upload.php) Arbitrary File Upload Vulnerability
=================================================================


################################################################
#
#
#    BLOG v1.55B Arbitrary File Upload Vulnerability
#
#
#    Affected software: BLOG v1.55B prior versions can be affected
#    Vendor: http://sourceforge.net/projects/kafooeyblog/
#    Risk: High
#
################################################################
#
#    http://[target]/[path]/lib/image_upload.php
#
#   This script only checks if the file you are uploading
#   is not a text/plain file so you can upload whatever
#   you want, for example a PHP Shell.
#
#
################################################################



#  0day.today [2018-01-02]  #