CVE-2012-6509 Information

Description

Unrestricted file upload vulnerability in NetArt Media Car Portal 3.0 allows remote attackers to execute arbitrary PHP code by uploading a file a double extension as demonstrated by .php00.jpg.

Reference

http://packetstormsecurity.org/files/112226/Car-Portal-CMS-3.0-CSRF-XSS-Shell-Upload.html http://www.securityfocus.com/bid/53267 http://www.vulnerability-lab.com/get_content.php?id=502