Unrestricted file upload vulnerability in admin/uploadform.asp in Battle Blog 1.25 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file.
References
Configurations
Information
Published : 2009-05-11 13:00
Updated : 2017-09-28 18:34
NVD link : CVE-2009-1609
Mitre link : CVE-2009-1609
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
battleblog
- battle_blog