Unauthenticated File Upload and Code Execution in KBVault Mysql Free Knowledge Base Application Package 0.16a

Unauthenticated File Upload and Code Execution in KBVault Mysql Free Knowledge Base Application Package 0.16a

CVE-2017-9602 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

KBVault Mysql Free Knowledge Base application package 0.16a comes with a FileExplorer/Explorer.aspx?id=/Uploads file-management component. An unauthenticated user can access the file upload and deletion functionality. Through this functionality, a user can upload an ASPX script to Uploads/Documents/ to run any arbitrary code.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.