Detections
Analytics

phpMyFAQ Image Upload Authentication Bypass

high Nessus Plugin ID 14188

Language:

Synopsis

The remote web server contains a PHP application that allows for unauthorized file uploads.

Description

The version of phpMyFAQ on the remote host contains a flaw that could allow an attacker without authorization to upload and delete arbitrary images on the remote host. An attacker may exploit this problem to deface the remote website.

Solution

Upgrade to phpMyFAQ 1.4.0a or newer.

See Also

http://www.phpmyfaq.de/advisory_2004-07-27.php

Plugin Details

Severity: High

ID: 14188

File Name: phpmyfaq_admin_bypass.nasl

Version: 1.19

Type: remote

Family: CGI abuses

Published: 8/2/2004

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 5.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:phpmyfaq:phpmyfaq

Required KB Items: www/phpmyfaq

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Ease: No exploit is required

Vulnerability Publication Date: 7/27/2004

Reference Information

CVE: CVE-2004-2257

BID: 10813