Summary
Woltlab Burning Board is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to adequately sanitize user-supplied input.
An attacker can exploit this vulnerability to upload arbitrary code and run it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation other attacks
are also possible.
Burning Board Lite 1.0.2 is affected
other versions may also be
vulnerable.
References
Severity
Classification
-
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- 123 Flash Chat Multiple Security Vulnerabilities
- Alt-N WebAdmin Remote Source Code Information Disclosure Vulnerability
- Adobe Presenter viewer.swf and loadflash.js XSS Vulnerability
- Apache Tomcat NIO Connector Denial of Service Vulnerability
- Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities