Full title: Havalite CMS Arbitary File Upload Exploit 
Category: remote exploits
Platform: php
This Metasploit module exploits a file upload vulnerability found in Havalite CMS version 1.1.7. Prior versions are possibly affected. Attackers can abuse the upload feature in order to upload a malicious PHP file without authentication, which results in arbitrary remote code execution.

# 0day.today @ http://0day.today/