CMS File Upload Vulnerability
Posted on 30 November -0001
<HTML><HEAD><TITLE>师说CMS File Upload Vulnerability</TITLE><META http-equiv="Content-Type" content="text/html; charset=utf-8"></HEAD><BODY>|*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*| |=============================================================| |[+] Exploit Title: File Upload Vulnerability in 师说CMS |[+] |[+] Exploit Author: Ashiyane Digital Security Team |[+] |[+] Vendor : https://github.com/northyoung/cms |[+] |[+] Tested on: Kali Linux |[+] |[+] Date: 12 /29 / 2016 |=============================================================| |[+] Vuln Path : http://127.0.0.1/cms-master/cms/src/main/webapp/system/assets/uploadify/ |[+] Method :GET |=============================================================| |[+] Vulnerability description |==============================| |[+] This page allows visitors to upload files to the server. |[+] Various web applications allow users to upload files (such as pictures, images, sounds, ...). |[+] Uploaded files may pose a significant risk if not handled correctly. A remote attacker could |[+] send a multipart/form-data POST request with a specially-crafted filename or mime type and execute arbitrary code. |[+] |*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*| |[+] Discovered By : M.R.S.L.Y |*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*||*| </BODY></HTML>
