Unrestricted File Upload Vulnerability in NetArt Media Car Portal 3.0
CVE-2012-6509

Currently unrated

Key Information:

Vendor: Netartmedia
Status: Car Portal
Vendor: CVE Published:; 24 January 2013

🔔 Create Netartmedia Vulnerability Alert

What is CVE-2012-6509?

The Car Portal 3.0 application from NetArt Media is susceptible to an unrestricted file upload vulnerability. Attackers can exploit this weakness by uploading specially crafted files with double extensions, such as .php%00.jpg. This allows them to execute arbitrary PHP code on the server, potentially leading to full system compromise and unauthorized access. Organizations using this version of the Car Portal should take immediate action to mitigate this risk.

References

http://www.securityfocus.com/bid/53267

vdb-entryx_refsource_BID

http://packetstormsecurity.org/files/112226/Car-Portal-CM...

x_refsource_MISC

http://www.vulnerability-lab.com/get_content.php?id=502

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 24, 2013

CVE-2012-6509 Data

JSON