Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:PHP:FERRET-CMS-FILE-UPLOAD |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Ferret CMS CVE-2015-1371 File Upload |
Release Date |
2019/03/05 |
Update Number |
3147 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Ferret CMS CVE-2015-1371 File Upload
This signature detects attempts to exploit a known vulnerability against Ferret CMS. A successful attack can lead to execute the script with the privileges of the web server.
Extended Description
Unrestricted file upload vulnerability in ferretCMS 1.0.4-alpha allows remote administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in custom/uploads/.
Affected Products
- Ferretcms_project ferretcms 1.0.4
References
- CVE: CVE-2015-1371