cbcvebase.
CVE-2011-0678
published 2011-01-28

CVE-2011-0678: Unrestricted file upload vulnerability in the EasyEdit module in Lomtec ActiveWeb Professional 3.0 allows remote attackers to execute arbitrary code by…

PriorityP258medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
9.21%
94.7th percentile
Unrestricted file upload vulnerability in the EasyEdit module in Lomtec ActiveWeb Professional 3.0 allows remote attackers to execute arbitrary code by uploading an executable file via the UploadDirectory and Accepted Extensions fields in the getImagefile component of EasyEdit.cfm.

Affected

1 ranges
VendorProductVersion rangeFixed in
lomtecactiveweb

Detection & IOCsextracted from sources · hover to see the quote

path/activeweb/EasyEdit.cfm
urlhttp://www.example.com/activeweb/EasyEdit.cfm?module=EasyEdit&page=getimagefile&Filter=
  • Look for POST requests to EasyEdit.cfm with the 'page=getimagefile' parameter, especially where 'UploadDirectory' or 'Accepted Extensions' hidden form fields have been tampered with to allow executable file extensions.
  • Monitor for executable file uploads via the getImagefile component of EasyEdit.cfm; the vulnerability is triggered through the UploadDirectory and Accepted Extensions fields.
  • Alert on HTTP requests to EasyEdit.cfm containing query parameters module=EasyEdit&page=getimagefile, which is the attack entry point for this unrestricted file upload vulnerability.
  • ·The vulnerability affects Lomtec ActiveWeb Professional 3.0 specifically; other versions may also be affected but are unconfirmed.
  • ·The attack relies on manipulating hidden form fields ('UploadDirectory' and 'Accepted Extensions'), meaning server-side validation of these fields is absent — detection should not rely solely on client-side controls.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.