Metasoft MetaCRM Unrestricted File Upload Vulnerability

A critical vulnerability allowing unrestricted file uploads has been identified in Metasoft MetaCRM versions through 6.4.2. The issue resides in an unknown function of the file '/common/jsp/upload2.jsp', where the manipulation of the 'File' argument enables remote attackers to upload arbitrary files. This vulnerability could potentially lead to a server compromise.

Impact

Exploitation of this vulnerability allows for arbitrary file uploads, which could be used to upload malicious files that are processed within the application's environment, potentially leading to a server compromise.

Reproduction

The vulnerability can be reproduced by sending a request to the '/common/jsp/upload2.jsp' file with a manipulated 'File' argument that includes an arbitrary file. This can be done remotely, and the uploaded file can be of a type that is dangerous when processed by the application.