SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  Pandora FMS Arbitrary File Upload 4

Category: WEB-ATTACKS      

Pandora FMS provides an administrative user with the File Repository feature. This feature is different from the File Manager function, affected by the vulnerability 7.2. It is possible to abuse this functionality to upload a file containing a PHP web shell to a publicly accessible folder, which could lead to the execution of system commands with the privileges of the apache user.


Relevant Information