Full title: FlashChat Arbitrary File Upload Vulnerability 
Category: remote exploits
Platform: php
This Metasploit module exploits a file upload vulnerability found in FlashChat versions 6.0.2 and 6.0.4 to 6.0.8. Attackers can abuse the upload feature in order to upload malicious PHP files without authentication which results in arbitrary remote code execution as the web server user.

# 0day.today @ http://0day.today/