Google Hack Honeypot File Upload Manager 1.3 - 'delall' Unauthorized File Access
| EKU-ID: 36224 | CVE: CVE-2008-5283;OSVDB-50367 | OSVDB-ID: |
| Author: Mr-m07 | Published: 2008-02-19 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 36224 | CVE: CVE-2008-5283;OSVDB-50367 | OSVDB-ID: |
| Author: Mr-m07 | Published: 2008-02-19 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/27877/info Google Hack Honeypot File Upload Manager is prone to an unauthorized file-access vulnerability. This issue occurs because the application fails to validate users before processing a certain HTTP request. Attackers can exploit this issue to delete all files that have been uploaded to the application. File Upload Manager 1.3 is vulnerable; other versions may also be affected. http://www.example.com/[path]/index.php?act=delall