Unrestricted File Upload Vulnerability in Zeeways ZEEJOBSITE 2.0
CVE-2008-6913

Currently unrated

Key Information:

Vendor

Zeeways

Status
Zeejobsite
Vendor
CVE Published:
7 August 2009

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC

What is CVE-2008-6913?

A vulnerability in Zeeways ZEEJOBSITE 2.0 allows remote authenticated users to upload files with executable extensions. This occurs through the 'editresume_next.php' script when editing a profile. The flaw enables attackers to execute arbitrary code by directly accessing an uploaded file via a URL, potentially compromising the entire system.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2008-6913 - Proof of Concept

References

http://www.vupen.com/english/advisories/2008/3072
vdb-entryx_refsource_VUPEN
https://www.exploit-db.com/exploits/7062
exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/32225
vdb-entryx_refsource_BID

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

JSON
.