TWiki – Arbitrary File Upload (Windows)

The vulnerability (CVE-2014-7237) allows an attacker to execute arbitrary system code on any TWiki installed on a Windows based server, with the only requirement of being able to upload files to the system (Enabled by default). TWiki is an open-source web platform used to create and maintain wikis. It allows its users to upload files into the […]