Joomla! Easy Flash Uploader Module Arbitrary File Upload Vulnerability


Description   Sammy Forgit has reported a vulnerability in the Easy Flash Uploader module for Joomla!, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to the plugins/content/efup_files/helper.php script allowing the upload of files with arbitrary extensions to a folder inside the webroot. This can be exploited to execute arbitrary PHP code by uploading a malicious PHP script.
The vulnerability is reported in version 2.0. Prior versions may also be affected.
     
Vulnerable Products   Vulnerable Software:
Easy Flash Uploader 2.x (module for Joomla!)
     
Solution   Update to version 2.1.
     
CVE  
     
References   Easy Flash Uploader:
https://www.valorapps.com/12-notices/27-easy-flash-uploader-version-2-1-is-released.html
OpenSysCom:
http://www.opensyscom.fr/Actualites/joomla-plugins-easy-flash-uploader-arbitrary-file-upload-vulnerability.html
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
Upload of a PHP file in a vulnerable web application
5.0.0
     


 
 
 
 
 Risk level 
High 

 Vulnerability First Public Report Date 
2012-06-14 

 Target Type 
Server 

 Possible exploit 
Remote