Up.Time Monitoring Station post2file.php Arbitrary File Upload
Posted on 07 December 2013
This Metasploit module exploits an arbitrary file upload vulnerability found within the Up.Time monitoring server 7.2 and below. A malicious entity can upload a PHP file into the webroot without authentication, leading to arbitrary code execution.
