Malw4r3 Find File Upload Vulnerability

Iranian hacker Malw4r3 have discover file upload vulnerability:

Ardhas Technology -Fckeditor- Arbitrary File Upload Vulnerability

File upload vulnerabilities allow attacker to upload scripts that is executed on the servers Most cause of this vulnerability functionality is supposed to allow users to have upload images PDF documents or other files that is designed to be displayed Developers may not have proper input validation in code to block content types attackers can upload

Vulnerability detail is here: https://cxsecurity.com/issue/WLB-2015120191

Leave a Reply

Your email address will not be published. Required fields are marked *