Details of VAR-190001-0681

ID

VAR-190001-0681

TITLE

Pragyan CMS ‘ frmupload.html ’ Any file upload vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-201201-171

DESCRIPTION

Pragyan CMS is prone to an arbitrary-file-upload vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to upload arbitrary files to the affected computer; this can result in arbitrary code execution within the context of the vulnerable application. Pragyan CMS 2.6.1 is available; other versions may also be affected.

Trust: 0.3

sources: BID: 51415

AFFECTED PRODUCTS

vendor:

pragyan

model:

cms pragyan cms

scope:

version:

2.6.1

Trust: 0.3

sources: BID: 51415

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201201-171

TYPE

Input Validation Error

Trust: 0.3

sources: BID: 51415

EXTERNAL IDS

db:	BID	id:	51415	Trust: 0.9
db:	CNNVD	id:	CNNVD-201201-171	Trust: 0.6

sources: BID: 51415 // CNNVD: CNNVD-201201-171

REFERENCES

url:	http://www.securityfocus.com/bid/51415	Trust: 0.6
url:	http://sourceforge.net/projects/pragyan/	Trust: 0.3

sources: BID: 51415 // CNNVD: CNNVD-201201-171

CREDITS

Dr.KroOoZ

Trust: 0.9

sources: BID: 51415 // CNNVD: CNNVD-201201-171

SOURCES

db:	BID	id:	51415
db:	CNNVD	id:	CNNVD-201201-171

LAST UPDATE DATE

2022-05-17T02:12:13.688000+00:00

SOURCES UPDATE DATE

db:	BID	id:	51415	date:	2012-01-13T00:00:00
db:	CNNVD	id:	CNNVD-201201-171	date:	2012-01-17T00:00:00

SOURCES RELEASE DATE

db:	BID	id:	51415	date:	2012-01-13T00:00:00
db:	CNNVD	id:	CNNVD-201201-171	date:	1900-01-01T00:00:00