ID CVE-2018-9206
Summary Unauthenticated arbitrary file upload vulnerability in Blueimp jQuery-File-Upload <= v9.22.0
References
Vulnerable Configurations
CVSS
Base: None
Impact:
Exploitability:
d2sec via4
name jQuery File Upload
url http://www.d2sec.com/exploits/jquery_file_upload.html
exploit-db via4
file exploits/php/remote/45790.rb
id EDB-ID:45790
last seen 2018-11-30
modified 2018-11-06
platform php
port
published 2018-11-06
reporter Exploit-DB
source https://www.exploit-db.com/download/45790
title blueimp's jQuery 9.22.0 - (Arbitrary) File Upload (Metasploit)
type remote
metasploit via4
description This module exploits an arbitrary file upload in the sample PHP upload handler for blueimp's jQuery File Upload widget in versions <= 9.22.0. Due to a default configuration in Apache 2.3.9+, the widget's .htaccess file may be disabled, enabling exploitation of this vulnerability. This vulnerability has been exploited in the wild since at least 2015 and was publicly disclosed to the vendor in 2018. It has been present since the .htaccess change in Apache 2.3.9. This module provides a generic exploit against the jQuery widget.
id MSF:EXPLOIT/UNIX/WEBAPP/JQUERY_FILE_UPLOAD
last seen 2018-11-19
modified 2018-11-16
published 2018-10-23
reliability Excellent
reporter Rapid7
source https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/jquery_file_upload.rb
title blueimp's jQuery (Arbitrary) File Upload
nessus via4
NASL family CGI abuses
NASL id JQUERY_FILEUPLOAD_RCE.NASL
description The version of jQuery-File-Upload running on the remote host is affected by an arbitrary file upload vulnerability. An unauthenticated attacker could leverage this vulnerability to gain access to the host in the context of the web application user.
last seen 2018-11-15
modified 2018-11-14
plugin id 118310
published 2018-10-22
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=118310
title jQuery-File-Upload Arbitrary File Upload Vulnerability (Remote Check)
packetstorm via4
data source https://packetstormsecurity.com/files/download/150180/jquery_file_upload.rb.txt
id PACKETSTORM:150180
last seen 2018-11-06
published 2018-11-05
reporter Larry W. Cashdollar
source https://packetstormsecurity.com/files/150180/blueimp-jQuery-Arbitrary-File-Upload.html
title blueimp jQuery Arbitrary File Upload
refmap via4
misc
Last major update 11-10-2018 - 11:29
Published 11-10-2018 - 11:29
Last modified 08-11-2018 - 06:29
Back to Top