View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0006419 | mantisbt | security | public | 2005-11-20 19:48 | 2006-10-09 11:55 |
Reporter | thraxisp | Assigned To | thraxisp | ||
Priority | normal | Severity | minor | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Product Version | 0.19.3 | ||||
Fixed in Version | 0.19.4 | ||||
Summary | 0006419: File Upload Vulnerability (TKADV2005-11-002) | ||||
Description | From Tobias Klein (tk at trapkit.de) [8] Upload files with arbitrary size Possible damage: Medium HTTP method: POST Vulnerability description: When the uploading functionality is activated (see config_inc.php) Normally uploaded files have a max size of 2,000k. This gets Site with vulnerable POST form:
Vulnerable POST request: POST [path_to_mantis]/bug_file_add.php HTTP/1.1 [...] -----------------------------263932646429032 1 2000000 <--- this value can be easily modified [...] Other URLs with vulnerable upload feature:
| ||||
Tags | No tags attached. | ||||