Woltlab Burning Board Arbitrary File Upload Vulnerability Network Vulnerability

Summary

Woltlab Burning Board is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to adequately sanitize user-supplied input. An attacker can exploit this vulnerability to upload arbitrary code and run it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation other attacks are also possible. Burning Board Lite 1.0.2 is affected other versions may also be vulnerable.

References

http://www.securityfocus.com/bid/39863
http://www.woltlab.de/products/burning_board/index_en.php

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

AeroMail Cross Site Request Forgery, HTML Injection and Cross Site Scripting Vulnerabilities
Apache Web Server ETag Header Information Disclosure Weakness
AN Guestbook Local File Inclusion Vulnerability
Adobe ColdFusion HTTP Response Splitting Vulnerability
Apache Tomcat Cross-Site Scripting and Security Bypass Vulnerabilities

Take action and discover your vulnerabilities