Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:23731
HistoryApr 30, 2010 - 12:00 a.m.

Amiro CMS<=5.4.4 PHP injection

2010-04-3000:00:00
vulners.com
57
JSON

[ONSEC-09-026] Amiro CMS PHP inj
[CVE number requested]
Objective: Amiro CMS <= 5.4.4
Type: PHP injection
Threat: Medium
Discovery date: 29.12.2009
Date of notification Developer: 29.12.2009
Released correction: 03/05/2010
Author: Vladimir Vorontsov
OnSec Russian Security Group (onsec [dot] ru)
Description: A vulnerability opens the way to overwrite and create
arbitrary files on the target system.
An attacker can affect the data falling into the file by changing some
parameters in the administrative console.
Also, due to lack of filtration attacker can specify an arbitrary file
name and path, using the relative definition.
The most dangerous is the creation of an executable file interpreter,
which leads to the execution of arbitrary commands.
For operation, a user account access to the module "Data Sharing" in the
administrative console.
The vulnerability exists due to lack of filtration in the name and file
type in the module "Data Sharing".

original at russian: http://onsec.ru/vuln?id=21


Best regards,
Vladimir Vorontsov
ONsec security expert

JSON