Exploitation Summary
EIP tracks 2 public exploits for CVE-2005-0854. PoCs published by farhad koosha.
AI-analyzed exploit summary The provided text describes multiple vulnerabilities in betaparticle blog, including insecure credential storage and arbitrary file upload/delete capabilities. However, it lacks actual exploit code, making it a vulnerability writeup rather than a functional PoC.
Description
betaparticle blog (bp blog), posisbly before version 4, allows remote attackers to bypass authentication and (1) upload files via a direct request to upload.asp or (2) delete files via a direct request to myFiles.asp.
Exploits (2)
The provided text describes multiple vulnerabilities in betaparticle blog, including insecure credential storage and arbitrary file upload/delete capabilities. However, it lacks actual exploit code, making it a vulnerability writeup rather than a functional PoC.
The provided text describes multiple vulnerabilities in betaparticle blog, including insecure credential storage and arbitrary file upload/delete capabilities. However, it lacks actual exploit code or technical details for execution.