Description
resumable.php (aka PHP backend for resumable.js) 0.1.4 before 3c6dbf5 allows arbitrary file upload anywhere in the filesystem via ../ in multipart/form-data content to upload.php. (File overwrite hasn't been possible with the code available in GitHub in recent years, however.)
References (5)
Core 5
Core References
Issue Tracking
https://github.com/dilab/resumable.php/issues/34
Patch
https://github.com/dilab/resumable.php/pull/27/commits/3e3c94d0302bb399a7611b4738a5a4dd0832a926
Scores
CVSS v3
8.1
EPSS
0.0010
EPSS Percentile
26.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-434
Status
published
Products (1)
startutorial/php_backend_for_resumable.js
0.1.4
Published
Dec 26, 2023
Tracked Since
Feb 18, 2026