VCMS Image Arbitrary Upload Exploit

A unrestricted file upload vulnerability exists in includes/inline_image_upload.php within AutoSec Tools V-CMS 1.0. This allows remote attackers to execute arbitrary code by uploading a file with an executable extension and then accessing it via a direct request to the file in temp.
Exploit type: 
Vulnerabilty ID: 
CVE-2011-4828
Product Version: 
12.5
Released Date: 
Wednesday, December 5, 2012 - 00:00