Full title: Uploadify jQuery Generic File Upload (Metasploit) 
Category: remote exploits
Platform: php
This module exploits an arbitrary File Upload and Code Execution flaw Uploadify script
(jQuery Multiple File Upload), the vulnerability allows for arbitrary file upload
and remote code execution POST Data to Vulnerable (uploadify.php) in any CMS/SCRIPT use Uploadify.

Some Joomla, WordPress, ... extensions maybe is affected !
you can find many websites used scripts Contain uploadify
is so vulnerable.
i put the basic proof of concept in the code maybe you need him.

// Inj3ct0r 1337day Exploit Database PROD - 2012

# 0day.today @ http://0day.today/