Title: CreativeDream software arbitrary file upload |
Author: Larry W. Cashdollar |
Date: 2022-09-08 |
CVE-ID:[CVE-2022-40721] |
CWE: |
Download Site: https://github.com/CreativeDream |
Vendor: CreativeDream |
Vendor Notified: 2020-02-19 |
Vendor Contact: yuliangagarin@mail.ru |
Advisory: http://www.vapidlabs.com/advisory.php?v=216 |
Description: PHP File Uploader is an easy to use, hi-performance File Upload Script which allows you to upload/download files to webserver. |
Vulnerability: The software allows executable file uploads to the web root directory. |
Export: JSON TEXT XML |
Exploit Code:
|
Screen Shots: |
Notes: |
Larry W. Cashdollar
Larry Cashdollar
Larry W. Cashdollar vulnerability
Larry Cashdollar advisory