| VID |
210071 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The Expose component for Joomla! is vulnerable to a file upload vulnerability. Joomla! is an open-source contents management system written in PHP. The Expose RC35 and earlier (com_expose) component for Joomla! could allow a remote attacker to upload malicious PHP files via the 'com_expose/uploadimg.php' script. A remote attacker could exploit this vulnerability to upload arbitrary PHP files and execute arbitrary code on the host.
* References:
http://joomlacode.org/gf/project/expose/news/?action=NewsThreadView&id=441
http://www.milw0rm.com/exploits/4194
* Platforms Affected:
GTEK, Expose component for Joomla! version RC35 and earlier versions
Any operating system Any version |
| Recommendation |
Apply the appropriate patch, as listed in vendor security advisory at http://joomlacode.org/gf/project/expose/news/?action=NewsThreadView&id=441 |
| Related URL |
CVE-2007-3932 (CVE) |
| Related URL |
24958 (SecurityFocus) |
| Related URL |
35488 (ISS) |
|
