Vulnerabilities > CVE-2009-3173 - Unspecified vulnerability in Theratstudios the RAT CMS 2

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
theratstudios
exploit available

Summary

Unrestricted file upload vulnerability in admin/add_album.php in The Rat CMS Alpha 2 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images/.

Vulnerable Configurations

Part Description Count
Application
Theratstudios
1

Exploit-Db

descriptionThe Rat CMS Alpha 2 Arbitrary File Upload Vulnerability. CVE-2009-3173. Webapps exploit for php platform
fileexploits/php/webapps/9599.txt
idEDB-ID:9599
last seen2016-02-01
modified2009-09-09
platformphp
port
published2009-09-09
reporterSecuritylab.ir
sourcehttps://www.exploit-db.com/download/9599/
titleThe Rat CMS Alpha 2 - Arbitrary File Upload Vulnerability
typewebapps