This exploit demonstrates an arbitrary file upload vulnerability in Phpbuddies CMS, allowing attackers to upload malicious PHP files by bypassing extension checks. The PoC outlines steps to exploit the vulnerability via the profile photo upload feature.
Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target:Phpbuddies CMS (version not specified)
Auth required
Prerequisites:Access to a vulnerable Phpbuddies CMS instance · User registration on the target site