Add CVE-2012-1153 #414

merged 2 commits into from May 23, 2012


None yet

2 participants


This module exploits a vulnerability found in appRain's Content Management Framework (CMF), version 0.1.5 or less. By abusing the uploadify.php, a malicious user can upload a file to the uploads/ directory without any authentication, which results in arbitrary code execution.

@wchen-r7 wchen-r7 merged commit ac0d224 into rapid7:master May 23, 2012
@wchen-r7 wchen-r7 deleted the wchen-r7:apprain branch Aug 22, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment