Open GoogleCodeExporter opened 9 years ago
This is code to hack!
http://packetstormsecurity.com/files/129759/ProjectSend-Arbitrary-File-Upload.ht
ml
Original comment by lorenzod...@gmail.com
on 5 May 2015 at 10:34
I think this is a VERY BIG BUG!!
None of you have come across and has a fix it??
Thanks
Original comment by lorenzod...@gmail.com
on 13 May 2015 at 11:26
Hi Lorenzo, the author has not updated a fix, however this may work:
https://github.com/ignacionelson/ProjectSend/blob/master/process-upload.php
Original comment by Ner...@gmail.com
on 19 May 2015 at 6:09
Oh, also good to disable code execution in the upload and temp upload folder.
Original comment by Ner...@gmail.com
on 19 May 2015 at 6:10
Original issue reported on code.google.com by
lorenzod...@gmail.com
on 5 May 2015 at 9:10Attachments: