RSS   Vulnerabilities for 'Battle blog'   RSS

2009-05-11
 
CVE-2009-1609

CWE-20
 

 
Unrestricted file upload vulnerability in admin/uploadform.asp in Battle Blog 1.25 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file.

 

 >>> Vendor: Battleblog 2 Products
Battleblog
Battle blog


Copyright 2024, cxsecurity.com

 

Back to Top