2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution

  • diananeff

    (@diananeff)


    16 years, 5 months ago

    Not able to upload images from browser or flash upload.

    The uploaded file could not be moved to D:\Hosting\3056829\html/wp-content/uploads/2009/12.

    I have been round and round about it. My site is hosted at GoDaddy.com and they say there is no problem on their end.

    I’ve been through all the check this and that that I can find (and understand) online regarding media file upload errors.

    Now this, has anyone heard of it?

    http://tweetycoaster.wordpress.com/2009/11/15/full-disclosure-wordpress-2-8-5-unrestricted-file-upload-arbitrary-php-code-execution/

    The problem I’m having came on suddenly, wondering if this is the reason.

    “Some wordpress users of the 2.8.5 release have reported that some php
    files have been added to
    their wordpress directory. It could be possible that they have been
    hit by this bug. Therefore it
    is important to take some countermeasures as soon as possible.”

    How do I find where line 260 is? Does the fix actually work anyway?

    Also, if I were to figure how to restore from my backup made a couple of weeks back, does anyone think that would remove any extra .php files that may be installed?

    When 2.9 comes out, will that automatically remove any “bad” stuff that’s already on my server?

    Should each of these questions be a different topic?

Viewing 5 replies - 1 through 5 (of 5 total)
  • esmi

    (@esmi)

    16 years, 5 months ago

    Not able to upload images from browser or flash upload.

    Are you hosted on a Linux or Windows server?

    Now this, has anyone heard of it?

    Yes. It was fixed in 2.8.6 as far as I recall. Try upgrading.

    Thread Starter diananeff

    (@diananeff)

    16 years, 5 months ago

    Windows server.

    I just upgraded to 2.8.6 and it didn’t make a difference.

    Still the same error message
    The uploaded file could not be moved to D:\Hosting\3056829\html/wp-content/uploads/2009/12.

    What does the 3056829 mean? Is that an account number? It’s not my customer number. I understand what comes after the html, but not before.

    esmi

    (@esmi)

    16 years, 5 months ago

    It may be based on your account number. Your hosting provider would know.

    Moderator Ipstenu (Mika Epstein)

    (@ipstenu)

    🏳️‍🌈 Advisor and Activist

    16 years, 5 months ago

    The number is your account number.

    That error sounds like the permissions on your uploads folder isn’t right. Were you able to upload images before?

    I have no idea what the permissions need to be on a windows host for WP. I’m Wingnorant.

    Thread Starter diananeff

    (@diananeff)

    16 years, 5 months ago

    Well, I got GoDaddy to help! Yes, I can set permissions, no problem and we thought that worked because the uploader started inserting the image name, but no picture. And it had a double up on the files at the end of the path. /2009/12/2009/12. I found by doing a google search while on hold for the GoDaddy associate that there was, under Settings, Miscellaneous, a place to change the path for the uploads.

    My fault on this part, during the trying this and that part of my searching, I had inserted the entire path there. The program was reading it twice.

    So, I believe the 2.8.6 upgrade actually fixed the initial problem because I set the permissions back to original now and the images are still uploading….and I believe the extra path files fixed the rest.

    Thanks for your help.

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution’ is closed to new replies.