Summary
ApPHP MicroBlog is prone to a remote code execution vulnerability.
Impact
Successful exploitation will allow remote attackers to execute arbitrary commands in the context of the affected application.
Solution
Ask the Vendor for an update.
Affected
ApPHP MicroBlog 1.0.1
Detection
Send a special crafted HTTP GET request and chech the response.
References
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Arkeia Appliance Path Traversal Vulnerability
- Apache Struts2 'URL' & 'Anchor' tags Arbitrary Java Method Execution Vulnerabilities
- Ajax File and Image Manager 'data.php' PHP Code Injection Vulnerability
- Andy's PHP Knowledgebase 's' Parameter SQL Injection Vulnerability
- AdaptBB Multiple Input Validation Vulnerabilities