Dotclear

Context Navigation

← Previous Ticket
Next Ticket →

Ticket #2241 (closed defect: wontfix)

Opened 9 years ago

Last modified 8 years ago

Upload Issue

Reported by:	cain	Owned by:	team
Priority:	high	Milestone:
Component:	module:mediamanager	Version:	2.11.2
Severity:	critical	Keywords:
Cc:

Description

A File Upload issue was discovered in Dotclear through 2.11.2. To exploit this vulnerability, someone must have a media-privilege account. In admin/media.php, the attacker can create a folder named "*.asp" or "*.asa". In IIS 5.x/6.0, every file in the folder named "*.asp" or "*.asa" will be resolved as "asp".

Change History

comment:1 Changed 9 years ago by franck

Milestone set to A definir

comment:2 Changed 8 years ago by franck

Status changed from new to closed
Resolution set to wontfix
Milestone A definir deleted

Note: See TracTickets for help on using tickets.

Download in other formats:

Sites map

Dotclear
- Home
- Download
- Extend
- License
About
Help & support
Contribute
Satellite sites
- Themes on Dotaddict.org
- Plugins on Dotaddict.org