Summary
appRain CMF is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input.
An attacker may leverage this issue to upload arbitrary files to the affected server
this can result in arbitrary code execution within the context of the vulnerable application.
appRain CMF 0.1.5 and prior versions are vulnerable.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2012-1153 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities