Arbitrary File Upload Bypass via Filename Manipulation in Tilde CMS 1.0.1

Arbitrary File Upload Bypass via Filename Manipulation in Tilde CMS 1.0.1

CVE-2017-11326 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

An issue was discovered in Tilde CMS 1.0.1. It is possible to bypass the implemented restrictions on arbitrary file upload via a filename.+php manipulation.

Learn more about our Cms Pen Testing.