2532designs 2532|Gigs Local File Include and Arbitrary File Upload Vulnerabilities « Arus Balik

1

20

Dec

Share

2532designs 2532|Gigs Local File Include and Arbitrary File Upload Vulnerabilities

BugTraq ID: 32911
Remote: Yes
Last Updated: 2008-12-18
Relevant URL: http://www.securityfocus.com/bid/32911
Summary:
2532|Gigs is prone to multiple local file-include vulnerabilities and an arbitrary file-upload vulnerability.

An attacker can exploit these issues to upload arbitrary files onto the webserver, execute arbitrary local files within the context of the webserver and obtain sensitive information.

2532|Gigs 1.2.2 is vulnerable; other versions may also be affected.

Leave a Reply [cancel]