Unrestricted File Upload Vulnerability in NetArt Media Car Portal 3.0
CVE-2012-6509

Currently unrated

Key Information:

Vendor

Netartmedia

Status
Car Portal
Vendor
CVE Published:
24 January 2013

What is CVE-2012-6509?

The Car Portal 3.0 application from NetArt Media is susceptible to an unrestricted file upload vulnerability. Attackers can exploit this weakness by uploading specially crafted files with double extensions, such as .php%00.jpg. This allows them to execute arbitrary PHP code on the server, potentially leading to full system compromise and unauthorized access. Organizations using this version of the Car Portal should take immediate action to mitigate this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/53267
vdb-entryx_refsource_BID
http://packetstormsecurity.org/files/112226/Car-Portal-CM...
x_refsource_MISC
http://www.vulnerability-lab.com/get_content.php?id=502
x_refsource_MISC

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.