Unrestricted file upload

2008-08-1123:41:00

PRIOn knowledge base

www.prio-n.com

8.2 High

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

83.9%

JSON

Unrestricted file upload vulnerability in the File Manager in the admin panel in Twentyone Degrees Symphony 1.7.01 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension to a directory specified in the destination parameter, then accessing the uploaded file via a direct request, as demonstrated using workspace/masters/.

CPENameOperatorVersion
symphonyle1.7.01
symphonyeq1.5
symphonyeq1.5.06
symphonyeq1.6.02
symphonyeq1.1
symphonyeq1.7
symphonyeq1.5.05

Name	Operator	Version
symphony	le	1.7.01
symphony	eq	1.5
symphony	eq	1.5.06
symphony	eq	1.6.02
symphony	eq	1.1
symphony	eq	1.7
symphony	eq	1.5.05

References

overture21.com/forum/comments.php?DiscussionID=1823

secunia.com/advisories/31293

securityreason.com/securityalert/4137

exchange.xforce.ibmcloud.com/vulnerabilities/44432

www.exploit-db.com/exploits/6177