CVE-2019-10267

HIGH

Ahsay Cloud Backup Suite < 8.1.1.50 - Unrestricted File Upload

Title source: rule

Description

An insecure file upload and code execution issue was discovered in Ahsay Cloud Backup Suite 8.1.0.50. It is possible to upload a file into any directory of the server. One can insert a JSP shell into the web server's directory and execute it. This leads to full access to the system, as the configured user (e.g., Administrator).

Exploits (3)

exploitdb WORKING POC VERIFIED

by Wietse Boonstra · pythonwebappsjsp

https://www.exploit-db.com/exploits/47179

View Code ZIP pw:eip

exploitdb WORKING POC

by Wietse Boonstra · rubywebappsjsp

https://www.exploit-db.com/exploits/47180

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by Wietse Boonstra · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/misc/ahsay_backup_fileupload.rb

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/153770/Ahsay-Backup-7.x-8.x-File-Upload-Remote-Code-Execution.html

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/153771/Ahsay-Backup-7.x-8.x-File-Upload-Remote-Code-Execution.html

[Exploit, Third Party Advisory] https://www.wbsec.nl/ahsay/

Scores

CVSS v3 8.8

EPSS 0.6436

EPSS Percentile 98.5%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-434

Status published

Products (1)

ahsay/cloud_backup_suite 7.7.0.0 - 8.1.1.50

Published Jul 26, 2019

Tracked Since Feb 18, 2026