MalwareTeks Blog

Security Focus
Class: Input Validation Error
Remote: Yes
Local: No
Published: Jun 25 2007 12:00AM Updated: Jun 25 2007 12:00AM
Credit: Clorox is credited with the discovery of this vulnerability.

e107 is prone to an arbitrary-file-upload vulnerability because the application fails to sufficiently sanitize user-supplied input.

An attacker can exploit this vulnerability to upload PHP script code and execute it in the context of the webserver process.

This issue affects version 0.7.8; prior versions may also be vulnerable.

Solution: Patch available from e107.org.

This patch fixes a fairly major security flaw in e107’s upload handler. Extract the file and upload it to your e107_handlers/ directory, overwriting the old file.

Download Patch:

NOTE: This exploit does not effect the MalwareTeks main site. This appears to be more of an issue with server security on the host end, then with the e107 CMS. Anyway the vulnerability report did reveal a security flaw with e107’s Upload Handler.

This only reinforces that you must keep your software up2date. This applies to the software that powers your website as well as the OS that powers your computer and the software you use.

Users of the e107 CMS should update to v0.7.8 immediately if they are running older versions of the CMS and apply the Upload Handler patch. Users of e107 v0.7.8 or v0.7.8+ should apply the Upload Handler patch. Make sure that filetypes.php is configured correctly to disallow the upload of html, php and other script files by users.