EzUpload multi file vulnerabilities

2006.08.01

Credit: hack2prison yahoo com

Risk: Medium

Local: No

Remote: Yes

CVE: CVE-2006-3939

CWE: CWE-Other

CVSS Base Score: 7.5/10

Impact Subscore: 6.4/10

Exploitability Subscore: 10/10

Exploit range: Remote

Attack complexity: Low

Authentication: No required

Confidentiality impact: Partial

Integrity impact: Partial

Availability impact: Partial

I don't know anyone report this but I have detected this when test EzUpload Pro 2.2.0

Attacker can re-config EzUpload system without login.

File: filter.php --> change Extensions Mode file type.

File: access.php --> change Protection Method accept anyone upload file

File: edituser.php --> Add user who can upload

File: settings.php --> Change admin informations

File: index.php --> Upload file without login even system require login

Check it and fun

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

EzUpload multi file vulnerabilities

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

EzUpload multi file vulnerabilities

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.