An issue exists in post2file.php in Up.Time Monitoring Station 7.5.0 (build 16) and 7.4.0 (build 13). It allows an malicious user to upload an arbitrary file, such as a .php file that can execute arbitrary OS commands.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
idera uptime infrastructure monitor 7.5.0 |
||
idera uptime infrastructure monitor 7.4.0 |