CVE-2009-1483

Studio Lounge Address Book 2.5 - Unauthenticated Arbitrary File Upload via upload-file.php

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1483. PoCs published by JosS.

AI-analyzed exploit summary This exploit demonstrates a remote shell upload vulnerability in Address Book 2.5 due to lack of file type validation in upload-file.php. Attackers can upload a PHP shell and execute it via a predictable path in the profiles directory.

Description

Unrestricted file upload vulnerability in upload-file.php in Adam Patterson Studio Lounge Address Book 2.5, as reachable from index2.php, allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in profiles/.

Exploits (1)

exploitdb WORKING POC VERIFIED

by JosS · textwebappsphp

https://www.exploit-db.com/exploits/8481

View Code ZIP pw:eip

This exploit demonstrates a remote shell upload vulnerability in Address Book 2.5 due to lack of file type validation in upload-file.php. Attackers can upload a PHP shell and execute it via a predictable path in the profiles directory.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Address Book 2.5

No auth needed

Prerequisites: Access to the upload functionality via /index2.php?title=add · Ability to retrieve the uploaded shell path via View Full Information

MITRE ATT&CK