Remote File Upload and File Deletion Vulnerability in BetaParticle Blog (BP Blog)

Remote File Upload and File Deletion Vulnerability in BetaParticle Blog (BP Blog)

CVE-2005-0854 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

betaparticle blog (bp blog), posisbly before version 4, allows remote attackers to bypass authentication and (1) upload files via a direct request to upload.asp or (2) delete files via a direct request to myFiles.asp.

Learn more about our Web Application Penetration Testing UK.