Main Vulnerability Database Exploits ID:670 - Exploit for Arbitrary file upload in TimThumb - CVE-2011-4106

ID:670 - Exploit for Arbitrary file upload in TimThumb - CVE-2011-4106

Published: March 18, 2020

Vulnerability identifier: #VU3035

Vulnerability risk: Critical

CVE-ID: CVE-2011-4106

CWE-ID: CWE-434

Exploitation vector: Remote access

Vulnerable software:
TimThumb

Link to public exploit:

https://www.exploit-db.com/exploits/17602/

Vulnerability description

The vulnerability allows a remote attacker to execute arbitrary PHP code on the target system.

The vulnerability exists due to improper storing of content in the cache directory when processing input. A remote attacker can send a specially crafted HTTP request containing a white-listed domain in the src parameter, upload a malicious PHP script and execute arbitrary PHP code.

Successful exploitation of the vulnerability may allow an attacker to execute arbitrary PHP code on the vulnerable system.

Note: the vulnerability was being actively exploited.

Remediation

Update to version 2.0.

ID:670 - Exploit for Arbitrary file upload in TimThumb - CVE-2011-4106

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human