← back
CVE-2005-0854

CVE-2005-0854

EPSS 3.5%
betaparticle blog (bp blog), posisbly before version 4, allows remote attackers to bypass authentication and (1) upload files via a direct request to upload.asp or (2) delete files via a direct request to myFiles.asp.
Affected products
n/a · n/a
public PoCs found2
exploitdbwww.exploit-db.com/exploits/25254unverifiedexploitdbwww.exploit-db.com/exploits/25253unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://blog.betaparticle.com/template_permalink.asp?id=68http://seclists.org/lists/bugtraq/2005/Mar/0360.htmlhttp://secunia.com/advisories/14668https://exchange.xforce.ibmcloud.com/vulnerabilities/19781http://www.securityfocus.com/bid/12861